7.8

CVE-2026-46136

wifi: mt76: mt7921: fix a potential clc buffer length underflow

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7921: fix a potential clc buffer length underflow

The buf_len is used to limit the iterations for retrieving the country
power setting and may underflow under certain conditions due to changes
in the power table in CLC.

This underflow leads to an almost infinite loop or an invalid power
setting resulting in driver initialization failure.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 6.1.75 < 6.1.175
LinuxLinux Kernel Version >= 6.6.14 < 6.6.140
LinuxLinux Kernel Version >= 6.7.2 < 6.12.88
LinuxLinux Kernel Version >= 6.13 < 6.18.30
LinuxLinux Kernel Version >= 6.19 < 7.0.7
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.13% 0.029
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://git.kernel.org/stable/c/e451c325b000b9a0081fd93bc6d103d6943d4b55
Patch
https://git.kernel.org/stable/c/90cc573fd2f46ddbc2c329e7814b5ba3deb7b939
Patch
https://git.kernel.org/stable/c/0aa63d33742b805d1a218d18d12b983cce4b2f7b
Patch
https://git.kernel.org/stable/c/a0111847f0b4f6023f6dd320114697514e024ba3
Patch
https://git.kernel.org/stable/c/5373f8b19e568b5c217832b9bbef165bd2b2df14
Patch
https://git.kernel.org/stable/c/2a79b1a492bcfa725383b6580cd93a6862308c85
Patch