CVE-2026-23325 — Buffer Access with Incorrect Length Value in Linux

CWE-805 — Buffer Access with Incorrect Length Value8 documents7 sources

Severity

7.1HIGH

No vector

EPSS

0.0%

top 93.69%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux +1 more

Timeline

PublishedMar 25

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211() Check frame length before accessing the mgmt fields in mt7996_mac_write_txwi_80211 in order to avoid a possible oob access.

Affected Packages5 packages

▶Linuxlinux/linux_kernel6.2.0 — 6.6.130+3

▶Debianlinux/linux_kernel< 6.19.8-1

▶msrcmsrc/azl3_kernel_6.6.126.1-1_on_azure_linux_3.0

▶CVEListV5linux/linux98686cd21624c75a043e96812beadddf4f6f48e5 — a6605f61913155e130bfd04d438c3ce1a572fb0f+5

▶debiandebian/linux< linux 6.19.8-1 (forky)

🔴Vulnerability Details

GHSA

GHSA-ghwv-vcf8-g6g9: In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211() Che↗2026-03-25

▶

OSV

wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211()↗2026-03-25

▶

OSV

CVE-2026-23325: In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211() Check↗2026-03-25

▶

📋Vendor Advisories

Red Hat

kernel: wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211()↗2026-03-25

▶

Microsoft

wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211()↗2026-03-10

▶

Debian

CVE-2026-23325: linux - In the Linux kernel, the following vulnerability has been resolved: wifi: mt76:...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-23325 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶