CVE-2026-46163

HIGH EPSS 2.9%
Published May 28, 20261mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published May 28, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: b43legacy: enforce bounds check on firmware key index in RX path Same fix as b43: the firmware-controlled key index in b43legacy_rx() can exceed dev->max_nr_keys. The existing B43legacy_WARN_ON is non-enforcing in production builds, allowing an out-of-bounds read of dev->key[]. Make the check enforcing by dropping the frame for invalid indices.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
2.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-129

Affected Products 9

VendorProductVersionRange
linuxlinux_kernel*≥2.6.24  –  <5.10.258
linuxlinux_kernel*≥5.11  –  <5.15.209
linuxlinux_kernel*≥5.16  –  <6.1.175
linuxlinux_kernel*≥6.2  –  <6.6.140
linuxlinux_kernel*≥6.7  –  <6.12.88
linuxlinux_kernel*≥6.13  –  <6.18.30
linuxlinux_kernel*≥6.19  –  <7.0.7
linuxlinux_kernel7.1any
linuxlinux_kernel7.1any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/1baaeb6adecb9691748c0253dab6ddd19a2b4e9e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4242db36de99de734cc1f60e5edd86cda7e598c6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6ee946077607d7783ae6709a899213fc4fe08f35
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9d1bc155802943e92c57a5fb923d23edfbf0b525
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a035766f970bde2d4298346a31a80685be5c0205
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a92bd0503df2488f2cc040f329ebccff1c1934cb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/df805c1d085b7a96077f0964185764c87060950d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fdd4e51979f42ca8b1ab7e6176b607e1caabf2a5
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/1baaeb6adecb9691748c0253dab6ddd19a2b4e9e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4242db36de99de734cc1f60e5edd86cda7e598c6
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6ee946077607d7783ae6709a899213fc4fe08f35
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9d1bc155802943e92c57a5fb923d23edfbf0b525
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a035766f970bde2d4298346a31a80685be5c0205
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a92bd0503df2488f2cc040f329ebccff1c1934cb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/df805c1d085b7a96077f0964185764c87060950d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fdd4e51979f42ca8b1ab7e6176b607e1caabf2a5
    Patch