CVE-2026-46305

medium Red Hat
Published: June 8, 2026 (32 days ago)
Last Modified: June 8, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel, specifically within the `rtl8723bs` staging driver's `os_dep` module. The `rtw_cbuf_alloc` function does not properly validate the return value of a memory allocation, leading to an unconditional dereference of a potentially NULL pointer. This vulnerability could allow a local attacker to cause a denial of service (DoS) by triggering a system crash.

CWE

CWE-476

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References