Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure ieee80211_tx_prepare_skb() has three error paths, but only two of them free the skb. The first error path (ieee80211_tx_prepare() returning TX_DROP) does not free it, while invoke_tx_handlers() failure and the fragmentation check both do. Add kfree_skb() to the first error path so all three are consistent, and remove the now-redundant frees in callers (ath9k, mt76, mac80211_hwsim) to avoid double-free. Document the skb ownership guarantee in the function's kdoc.

INFO

Published Date :

2026-04-03T15:15:28.464Z

Last Modified :

2026-04-03T15:15:28.464Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23444 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23444.

URL Resource
https://git.kernel.org/stable/c/06e769dddcbeb3baf2ce346273b53dd61fdbecf4 cve-icon cve-icon
https://git.kernel.org/stable/c/50f1b690b4868923fbd242298def2fb88662f108 cve-icon cve-icon
https://git.kernel.org/stable/c/d5ad6ab61cbd89afdb60881f6274f74328af3ee9 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026040314-CVE-2026-23444-8169@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23444 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23444 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact