SB2025091741 - Input validation error in Linux kernel net wireless driver
Published: September 17, 2025 Updated: September 22, 2025
Security Bulletin ID
SB2025091741
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Input validation error (CVE-ID: CVE-2023-53321)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the hwsim_cloned_frame_received_nl() function in drivers/net/wireless/mac80211_hwsim.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/3beb97bed860d95b14ad23578ce8ddaea62023db
- https://git.kernel.org/stable/c/672205c6f2d11978fcd7f0f336bb2c708e28874b
- https://git.kernel.org/stable/c/89a41ed7f21476301659ebd25ccb48a60791c1a7
- https://git.kernel.org/stable/c/b9a175e3b250b0dc6e152988040aa5014e98e61e
- https://git.kernel.org/stable/c/c64ee9dd335832d5e2ab0a8fc83a34ad4c729799
- https://git.kernel.org/stable/c/fba360a047d5eeeb9d4b7c3a9b1c8308980ce9a6
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.197
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.133
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.257
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.55
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.5.5
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6