CVE-2026-23444

UNKNOWN 0.0

wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

6th

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure ieee80211_tx_prepare_skb() has three error paths, but only two of them free the skb. The first error path (ieee80211_tx_prepare() returning TX_DROP) does not free it, while invoke_tx_handlers() failure and the fragmentation check both do. Add kfree_skb() to the first error path so all three are consistent, and remove the now-redundant frees in callers (ath9k, mt76, mac80211_hwsim) to avoid double-free. Document the skb ownership guarantee in the function's kdoc.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Apr 3, 2026
Last Updated	Apr 13, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

06be6b149f7e406bcf16098567f5a6c9f042bced < 06e769dddcbeb3baf2ce346273b53dd61fdbecf4 06be6b149f7e406bcf16098567f5a6c9f042bced < 50f1b690b4868923fbd242298def2fb88662f108 06be6b149f7e406bcf16098567f5a6c9f042bced < d5ad6ab61cbd89afdb60881f6274f74328af3ee9

Linux / Linux

3.13

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/06e769dddcbeb3baf2ce346273b53dd61fdbecf4 git.kernel.org: https://git.kernel.org/stable/c/50f1b690b4868923fbd242298def2fb88662f108 git.kernel.org: https://git.kernel.org/stable/c/d5ad6ab61cbd89afdb60881f6274f74328af3ee9