CVE-2026-23373Missing Initialization of Resource in Linux

CWE-909Missing Initialization of Resource7 documents6 sources
Severity
5.3MEDIUM
No vector
EPSS
0.0%
top 93.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedMar 25

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Don't default to -EOPNOTSUPP in rsi_mac80211_config This triggers a WARN_ON in ieee80211_hw_conf_init and isn't the expected behavior from the driver - other drivers default to 0 too.

Affected Packages4 packages

Linuxlinux/linux_kernel6.9.06.12.77+2
Debianlinux/linux_kernel< 6.19.8-1
CVEListV5linux/linux0a44dfc070749514b804ccac0b1fd38718f7daa1b64fbd718cf42feb75502bf25d0d16eb671aea45+4
debiandebian/linux< linux 6.19.8-1 (forky)

🔴Vulnerability Details

3
GHSA
GHSA-2x2q-jqp8-mvjv: In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Don't default to -EOPNOTSUPP in rsi_mac80211_config This triggers a W2026-03-25
OSV
wifi: rsi: Don't default to -EOPNOTSUPP in rsi_mac80211_config2026-03-25
OSV
CVE-2026-23373: In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Don't default to -EOPNOTSUPP in rsi_mac80211_config This triggers a WAR2026-03-25

📋Vendor Advisories

2
Red Hat
kernel: wifi: rsi: Don't default to -EOPNOTSUPP in rsi_mac80211_config2026-03-25
Debian
CVE-2026-23373: linux - In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: ...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23373 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23373 — Missing Initialization of Resource | cvebase