PT-2026-26049 · Linux · Linux
Published
2026-03-18
·
Updated
2026-03-18
·
CVE-2026-23246
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
In the Linux kernel, the following vulnerability has been resolved:
wifi: mac80211: bounds-check link id in ieee80211 ml reconfiguration
link id is taken from the ML Reconfiguration element (control & 0x000f),
so it can be 0..15. link removal timeout[] has IEEE80211 MLD MAX NUM LINKS
(15) elements, so index 15 is out-of-bounds. Skip subelements with
link id >= IEEE80211 MLD MAX NUM LINKS to avoid a stack out-of-bounds
write.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux