CVE-2026-46166 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: use safe list iteration in radar detect work The call to ieee80211_dfs_cac_cancel can cause the iterated chanctx to be freed and removed from the list. Guard against this to avoid a slab-use-after-free error.

PUBLISHED Reserved 2026-05-13 | Published 2026-05-28 | Updated 2026-05-30 | Assigner Linux

HIGH: 8.8CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Product status

Default status

unaffected

bca8bc0399ac2efd56e6adbed0307e10125a556c (git) before 887ece6c23b49d02a6678e7a8d5ad213d75883ce

affected

bca8bc0399ac2efd56e6adbed0307e10125a556c (git) before 7577a4b8a10fab45a6ee2045ea038a5adadbb585

affected

bca8bc0399ac2efd56e6adbed0307e10125a556c (git) before 120149fb3ebcf674832ca3cafd32bedcdb686dde

affected

bca8bc0399ac2efd56e6adbed0307e10125a556c (git) before ac8eb3e18f41e2cc8492cc1d358bcb786c850270

affected

Default status

affected

6.12

affected

Any version before 6.12

unaffected

6.12.88 (semver)

unaffected

6.18.30 (semver)

unaffected

7.0.7 (semver)

unaffected

7.1-rc3 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/887ece6c23b49d02a6678e7a8d5ad213d75883ce

git.kernel.org/...c/7577a4b8a10fab45a6ee2045ea038a5adadbb585

git.kernel.org/...c/120149fb3ebcf674832ca3cafd32bedcdb686dde

git.kernel.org/...c/ac8eb3e18f41e2cc8492cc1d358bcb786c850270

cve.org (CVE-2026-46166)

nvd.nist.gov (CVE-2026-46166)

Download JSON

help @ threatint.eu