๐Ÿ” CVE Alert

CVE-2023-54286

UNKNOWN 0.0

wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace A received TKIP key may be up to 32 bytes because it may contain MIC rx/tx keys too. These are not used by iwl and copying these over overflows the iwl_keyinfo.key field. Add a check to not copy more data to iwl_keyinfo.key then will fit. This fixes backtraces like this one: memcpy: detected field-spanning write (size 32) of single field "sta_cmd.key.key" at drivers/net/wireless/intel/iwlwifi/dvm/sta.c:1103 (size 16) WARNING: CPU: 1 PID: 946 at drivers/net/wireless/intel/iwlwifi/dvm/sta.c:1103 iwlagn_send_sta_key+0x375/0x390 [iwldvm] <snip> Hardware name: Dell Inc. Latitude E6430/0H3MT5, BIOS A21 05/08/2017 RIP: 0010:iwlagn_send_sta_key+0x375/0x390 [iwldvm] <snip> Call Trace: <TASK> iwl_set_dynamic_key+0x1f0/0x220 [iwldvm] iwlagn_mac_set_key+0x1e4/0x280 [iwldvm] drv_set_key+0xa4/0x1b0 [mac80211] ieee80211_key_enable_hw_accel+0xa8/0x2d0 [mac80211] ieee80211_key_replace+0x22d/0x8e0 [mac80211] <snip>

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Dec 30, 2025
Last Updated May 11, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Linux / Linux
5a3d9882b84edf5fa8e8ca33a5d6df25e2e727a5 < 76b5ea43ad2fb4f726ddfaff839430a706e7d7c2 5a3d9882b84edf5fa8e8ca33a5d6df25e2e727a5 < 3ed3c1c2fc3482b72e755820261779cd2e2c5a3e 5a3d9882b84edf5fa8e8ca33a5d6df25e2e727a5 < fa57021262e998e2229d6383b1081638df2fe238 5a3d9882b84edf5fa8e8ca33a5d6df25e2e727a5 < 91ad1ab3cc7e981cb6d6ee100686baed64e1277e 5a3d9882b84edf5fa8e8ca33a5d6df25e2e727a5 < 87940e4030e4705e1f3fd2bbb1854eae8308314b 5a3d9882b84edf5fa8e8ca33a5d6df25e2e727a5 < 57189c885149825be8eb8c3524b5af017fdeb941 5a3d9882b84edf5fa8e8ca33a5d6df25e2e727a5 < 6cd644f66b43709816561d63e0173cb0c7aab159 5a3d9882b84edf5fa8e8ca33a5d6df25e2e727a5 < ef16799640865f937719f0771c93be5dca18adc6
Linux / Linux
3.1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/76b5ea43ad2fb4f726ddfaff839430a706e7d7c2 git.kernel.org: https://git.kernel.org/stable/c/3ed3c1c2fc3482b72e755820261779cd2e2c5a3e git.kernel.org: https://git.kernel.org/stable/c/fa57021262e998e2229d6383b1081638df2fe238 git.kernel.org: https://git.kernel.org/stable/c/91ad1ab3cc7e981cb6d6ee100686baed64e1277e git.kernel.org: https://git.kernel.org/stable/c/87940e4030e4705e1f3fd2bbb1854eae8308314b git.kernel.org: https://git.kernel.org/stable/c/57189c885149825be8eb8c3524b5af017fdeb941 git.kernel.org: https://git.kernel.org/stable/c/6cd644f66b43709816561d63e0173cb0c7aab159 git.kernel.org: https://git.kernel.org/stable/c/ef16799640865f937719f0771c93be5dca18adc6