wifi: mwifiex: avoid possible NULL skb pointer dereference
CVE-2023-53384

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2023-53384?

In the Linux kernel, the following vulnerability has been resolved:

wifi: mwifiex: avoid possible NULL skb pointer dereference

In 'mwifiex_handle_uap_rx_forward()', always check the value returned by 'skb_copy()' to avoid potential NULL pointer dereference in 'mwifiex_uap_queue_bridged_pkt()', and drop original skb in case of copying failure.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Affected Version(s)

Linux 838e4f44929782a2163c7bc95a7cd2da5d8b47f9

Linux 838e4f44929782a2163c7bc95a7cd2da5d8b47f9 < 139d285e7695279f030dbb172e2d0245425c86c6

Linux 838e4f44929782a2163c7bc95a7cd2da5d8b47f9 < 231086e6a36316b823654f4535653f22d6344420

References

https://git.kernel.org/stable/c/d155c5f64cefacdc6a9a26d40...
https://git.kernel.org/stable/c/139d285e7695279f030dbb172...
https://git.kernel.org/stable/c/231086e6a36316b823654f453...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-53384 : Linux Kernel Vulnerability in mwifiex Driver Affecting Wi-Fi Functionality