Main Vulnerability Database SB20250916172

SB20250916172 - NULL pointer dereference in Linux kernel wireless virtual driver

Published: September 16, 2025 Updated: September 22, 2025

Security Bulletin ID SB20250916172

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) NULL pointer dereference (CVE-ID: CVE-2023-53209)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the mac80211_hwsim_select_tx_link() function in drivers/net/wireless/virtual/mac80211_hwsim.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/0cc80943ef518a1c51a1111e9346d1daf11dd545
https://git.kernel.org/stable/c/a8a20fed3e05b3a6866c5c58855deaf3c217ccd6
https://git.kernel.org/stable/c/d0124848c7940aba73492e282506b32a13f2e30e
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.42