CVE-2026-31626
Published: Apr 24, 2026
Modified: Jun 1, 2026
CVSS v3.1
7.1
Description
In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() Initialize le_tmp64 to zero in rtw_BIP_verify() to prevent using uninitialized data. Smatch warns that only 6 bytes are copied to this 8-byte (u64) variable, leaving the last two bytes uninitialized: drivers/staging/rtl8723bs/core/rtw_security.c:1308 rtw_BIP_verify() warn: not copying enough bytes for '&le_tmp64' (8 vs 6 bytes) Initializing the variable at the start of the function fixes this warning and ensures predictable behavior.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < 6792624d933146e2757b07092e93ad915cb58930affected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < 51532c7c1d357145f4ac561648499f7a6847f739affected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < 9e911eead187240193516edf55a0e1ab3425aa5baffected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < c65ee4d3be5df395e48afbcd0946dd5fce4338a9affected 554c0a3abf216c991c5ebddcdb2c08689ecd290b - < d5b8f5f8d6fc09a8af5ed139c688660f578ed732+4 more versions |
Linux | Linux | affected 4.12unaffected 0 - < 4.12unaffected 5.10.258 - <= 5.10.*unaffected 5.15.209 - <= 5.15.*unaffected 6.1.175 - <= 6.1.*+6 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now