Improper input validation in Linux kernel - CVE-2026-53257
Published: June 26, 2026
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to improper input validation in nl80211_calculate_ap_params() when processing wireless AP parameters. A local user can provide inconsistent HE or EHT capability and operation elements to cause a denial of service.
The issue can lead to a crash in mac80211 when EHT capability data is present without corresponding EHT operation data.