staging: rtl8723bs: os_dep: avoid NULL pointer dereference in rtw_cbuf_alloc
CVE-2026-46305

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
8 June 2026

What is CVE-2026-46305?

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: os_dep: avoid NULL pointer dereference in rtw_cbuf_alloc

The return value of kzalloc_flex() is used without ensuring that the allocation succeeded, and the pointer is dereferenced unconditionally.

Guard the access to the allocated structure to avoid a potential NULL pointer dereference if the allocation fails.

Affected Version(s)

Linux 980cd426a25747daf8ed25e2a1904b2d26ffbb3d < 0a5f411becfb7c57aa89827213d31ef23a03d75a

Linux 980cd426a25747daf8ed25e2a1904b2d26ffbb3d

Linux 7.0

References

https://git.kernel.org/stable/c/0a5f411becfb7c57aa8982721...
https://git.kernel.org/stable/c/bc851db06045a40c18233dd76...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.