Linux Kernel Vulnerability in Wi-Fi Management Affects Mac80211 Functionality
CVE-2026-43052

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 1 May 2026

What is CVE-2026-43052?

A vulnerability in the Linux kernel's Wi-Fi management, specifically within the mac80211 subsystem, allows for improper handling of TDLS (Tunneled Direct Link Setup) functionalities. When the NL80211_TDLS_ENABLE_LINK function is invoked, it fails to verify whether the specified station is indeed a TDLS peer. This oversight can trigger unintended consequences, such as changes in channel context and HT (High Throughput) protection, before a proper failure response is executed. A critical improvement adds a check for the TDLS status of the station before executing the ENABLE_LINK operation, thus preventing improper interactions with non-TDLS stations.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 8148c2fda4ebb17104a573649c9b699208ad10ee

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/8148c2fda4ebb17104a573649...

https://git.kernel.org/stable/c/be81f17151fcb8546a95f35ca...

https://git.kernel.org/stable/c/e77b2937aaa20264e4bd699d3...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 1, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43052 Data

JSON