CVE-2025-68254
中文标题:
(暂无数据)
英文标题:
staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing
漏洞描述
中文描述:
(暂无数据)
英文描述:
In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing The Extended Supported Rates (ESR) IE handling in OnBeacon accessed *(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these offsets lie within the received frame buffer. A malformed beacon with an ESR IE positioned at the end of the buffer could cause an out-of-bounds read, potentially triggering a kernel panic. Add a boundary check to ensure that the ESR IE body and the subsequent bytes are within the limits of the frame before attempting to access them. This prevents OOB reads caused by malformed beacon frames.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| Linux | Linux | - | < d1ab7f9cee22e7b8a528da9ac953e4193b96cda5 | - |
cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:*
|
| Linux | Linux | 4.12 | - | - |
cpe:2.3:a:linux:linux:4.12:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
CVSS评分详情
NOT_EXTRACTED
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2025-68254 |
2026-01-04 02:04:25 | 2026-01-12 02:12:29 |
| NVD | nvd_CVE-2025-68254 |
2025-12-19 03:25:39 | 2026-01-12 02:28:12 |
版本与语言
安全公告
变更历史
查看详细变更
- references_count: 6 -> 7
查看详细变更
- references_count: 4 -> 6
查看详细变更
- affected_products_count: 5 -> 2
- data_sources: ['cve'] -> ['cve', 'nvd']