CVE-2026-46092
published 2026-05-27CVE-2026-46092: In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: check for PCI upstream bridge existence pci_upstream_bridge() returns NULL if…
medium5.5
In the Linux kernel, the following vulnerability has been resolved:
wifi: rtw88: check for PCI upstream bridge existence
pci_upstream_bridge() returns NULL if the device is on a root bus. If
8821CE is installed in the system with such a PCI topology, the probing
routine will crash. This has probably been unnoticed as 8821CE is mostly
supplied in laptops where there is a PCI-to-PCI bridge located upstream
from the device. However the card might be installed on a system with
different configuration.
Check if the bridge does exist for the specific workaround to be applied.
Found by Linux Verification Center (linuxtesting.org) with Svace static
analysis tool.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | — | — |
| linux | linux | — | — |
| linux | linux | >= 24f5e38a13b5ae2b6105cda8bb47c19108e62a9a < eb101d2abdcccb514ca4fccd3b278dd8267374f6 | eb101d2abdcccb514ca4fccd3b278dd8267374f6 |
| linux | linux | >= 5.15.17 < 5.16 | 5.16 |
| linux | linux | >= 5.16.3 < 5.17 | 5.17 |
| linux | linux_kernel | — | — |