CVE-2026-43159

Summary

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: fix null dereference in find_network

The variable pwlan has the possibility of being NULL when passed into rtw_free_network_nolock() which would later dereference the variable.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 3b1d0c9a1f78836d0bce6fdd37f596f22c19b03eaffected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 1aa9c59f4b96a9056c02476c7ca89e96d15e0645affected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 48b4dec3a8bfd667cd0cd767eaf511176193e9a1affected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < cc3f83b6fb3773ad943365d1cd774b4ec050332eaffected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 04d24a3654ed195485bc6346a9ef326fc494a34eaffected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 677490a6bd4c63acdf6f48e4aaf6a23d7e6a446faffected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 7fa16ffed2b9d9d44940990c1f31159770769aebaffected
LinuxLinux554c0a3abf216c991c5ebddcdb2c08689ecd290b < 41460a19654c32d39fd0e3a3671cd8d4b7b8479faffected
LinuxLinux4.12affected
LinuxLinux0 < 4.12unaffected
LinuxLinux5.10.253 <= 5.10.*unaffected
LinuxLinux5.15.202 <= 5.15.*unaffected
LinuxLinux6.1.165 <= 6.1.*unaffected
LinuxLinux6.6.128 <= 6.6.*unaffected
LinuxLinux6.12.75 <= 6.12.*unaffected
LinuxLinux6.18.16 <= 6.18.*unaffected
LinuxLinux6.19.6 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References