CVE-2026-23279NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference8 documents7 sources
Severity
6.5MEDIUM
No vector
EPSS
0.1%
top 69.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedMar 25

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame() In mesh_rx_csa_frame(), elems->mesh_chansw_params_ie is dereferenced at lines 1638 and 1642 without a prior NULL check: ifmsh->chsw_ttl = elems->mesh_chansw_params_ie->mesh_ttl; ... pre_value = le16_to_cpu(elems->mesh_chansw_params_ie->mesh_pre_value); The mesh_matches_local() check above only validates the Mesh ID, Mesh Configuration, and Supported Rates IE

Affected Packages5 packages

Linuxlinux/linux_kernel3.13.06.1.167+4
Debianlinux/linux_kernel< 6.19.8-1
CVEListV5linux/linux8f2535b92d685c68db4bc699dd78462a646f6ef92b5f282b1b7241ef624c3399a1cdff0bb1a3eeab+6
debiandebian/linux< linux 6.19.8-1 (forky)

🔴Vulnerability Details

3
OSV
wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame()2026-03-25
GHSA
GHSA-3969-jvq7-cjf4: In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame() In mesh_rx_c2026-03-25
OSV
CVE-2026-23279: In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame() In mesh_rx_csa2026-03-25

📋Vendor Advisories

3
Red Hat
kernel: wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame()2026-03-25
Microsoft
wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame()2026-03-10
Debian
CVE-2026-23279: linux - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23279 Impact, Exploitability, and Mitigation Steps | Wiz