CVE-2026-43387

May 8, 2026, 3:16 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: properly validate the data in rtw_get_ie_ex() Just like in commit 154828bf9559 ("staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser"), we don't trust the data in the frame so we should check the length better before acting on it

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *
Rtl8723bs
  • Rtl8723bs
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o linux linux_kernel / / / / / / / /
a rtl8723bs rtl8723bs / / / / / / / /

References

https://git.kernel.org/stable/c/35969c3a208a07cb8642301df5869c34e2db7071
https://git.kernel.org/stable/c/6d62fa548387e159a21ea95132c09bfc96d336ed
https://git.kernel.org/stable/c/740bca8bbdb707c0e4bb11e3316deb2f04fc7ce1
https://git.kernel.org/stable/c/8097a48c606a9306281ea7bd73bf2afc97553733
https://git.kernel.org/stable/c/821f7d759fb2de33c5e5b0c4981181c4d0c3e9b1
https://git.kernel.org/stable/c/9a4cd4c37593cc8b8d28f9a6732b490a8032006a
https://git.kernel.org/stable/c/ac38856092b4c994f94343251b30520bdeb7f475
https://git.kernel.org/stable/c/f0109b9d3e1e455429279d602f6276e34689750a

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2026-05-08
CVE-2026-43387

Timeline

Published: May 8, 2026, 3:16 p.m.
Last Modified: May 8, 2026, 3:16 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.