CVE-2026-23444Multiple Releases of Same Resource or Handle in Linux

CWE-1341Multiple Releases of Same Resource or Handle8 documents8 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 94.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
LinuxLinux Kernel
Timeline
PublishedApr 3

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure ieee80211_tx_prepare_skb() has three error paths, but only two of them free the skb. The first error path (ieee80211_tx_prepare() returning TX_DROP) does not free it, while invoke_tx_handlers() failure and the fragmentation check both do. Add kfree_skb() to the first error path so all three are consistent, and remove the now-redundant frees in callers (ath9

Affected Packages2 packages

Debianlinux/linux_kernel< 6.19.10-1
CVEListV5linux/linux06be6b149f7e406bcf16098567f5a6c9f042bced06e769dddcbeb3baf2ce346273b53dd61fdbecf4+3

🔴Vulnerability Details

3
CVEList
wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure2026-04-03
GHSA
GHSA-84pr-vgrv-386j: In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure ieee80211_2026-04-03
OSV
CVE-2026-23444: In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure ieee80211_tx2026-04-03

📋Vendor Advisories

3
Red Hat
kernel: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure2026-04-03
Microsoft
wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure2026-04-02
Debian
CVE-2026-23444: linux - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23444 Impact, Exploitability, and Mitigation Steps | Wiz