Out-of-Bounds Read Vulnerability in Linux Kernel's rtl8723bs by Vendor Linux
CVE-2025-68256

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 December 2025

What is CVE-2025-68256?

A vulnerability in the Linux kernel's rtl8723bs driver involves the parsing of Information Elements (IEs). The function rtw_get_ie() failed to reliably validate the length of the IE body against the actual size of the frame buffer. This oversight allowed for a potential scenario where a crafted frame could report a length that exceeds the available data, leading to out-of-bounds read conditions. The flaw could also result in an infinite loop, disrupting the normal operation of the system. A safeguard has been implemented in the latest update to validate that the total byte size does not exceed the buffer limit, preventing these errors and ensuring safer termination when processing malformed frames.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch