Home

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: do not run mt76_unregister_device() on unregistered hw Trying to probe a mt7921e pci card without firmware results in a successful probe where ieee80211_register_hw hasn't been called. When removing the driver, ieee802111_unregister_hw is called unconditionally leading to a kernel NULL pointer dereference. Fix the issue running mt76_unregister_device routine just for registered hw.

PUBLISHED Reserved 2025-05-02 | Published 2025-05-02 | Updated 2026-05-11 | Assigner Linux

Product status

Default status
unaffected

1c71e03afe4b457a15e50de40006b927dfc00755 (git) before dffe86df26aee01a5fc56a175b7a7f157961e370
affected

1c71e03afe4b457a15e50de40006b927dfc00755 (git) before 2d34f27714c97a9786a30b3bb54944d6d8ed612f
affected

1c71e03afe4b457a15e50de40006b927dfc00755 (git) before 41130c32f3a18fcc930316da17f3a5f3bc326aa1
affected

Default status
affected

5.18
affected

Any version before 5.18
unaffected

6.1.113 (semver)
unaffected

6.2.9 (semver)
unaffected

6.3 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/dffe86df26aee01a5fc56a175b7a7f157961e370

git.kernel.org/...c/2d34f27714c97a9786a30b3bb54944d6d8ed612f

git.kernel.org/...c/41130c32f3a18fcc930316da17f3a5f3bc326aa1

cve.org (CVE-2023-53071)

nvd.nist.gov (CVE-2023-53071)

Download JSON