CVE-2025-68254
Published: Dec 16, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing The Extended Supported Rates (ESR) IE handling in OnBeacon accessed *(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these offsets lie within the received frame buffer. A malformed beacon with an ESR IE positioned at the end of the buffer could cause an out-of-bounds read, potentially triggering a kernel panic. Add a boundary check to ensure that the ESR IE body and the subsequent bytes are within the limits of the frame before attempting to access them. This prevents OOB reads caused by malformed beacon frames.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < c03cb111628924827351e19baa5b073e9b0d723daffected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < bb5940193d813449540d8d3a82abc045be41f48aaffected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < c173ce97d3f0f0c0fefa39139d6d04ba60b5db22affected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < d1ab7f9cee22e7b8a528da9ac953e4193b96cda5affected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < 38292407c2bb5b2b3131aaace4ecc7a829b40b76+2 more versions |
Linux | Linux | affected 4.12unaffected 0 - < 4.12unaffected 5.15.198 - <= 5.15.*unaffected 6.1.160 - <= 6.1.*unaffected 6.6.120 - <= 6.6.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now