Description
In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: fix memory leak on failure path

cfg80211_inform_bss_frame() may return NULL on failure. In that case,
the allocated buffer 'buf' is not freed and the function returns early,
leading to potential memory leak.
Fix this by ensuring that 'buf' is freed on both success and failure paths.
Published: 2026-05-06
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The rtl8723bs Wi‑Fi driver contains a flaw where cfg80211_inform_bss_frame() may return NULL during a failure, causing an allocated buffer to remain unfreed before the function exits. The unfreed buffer accumulates in kernel space, creating a memory leak that could grow with repeated driver failures. The lack of deallocation affects the integrity of kernel memory, potentially leading to degraded performance or a kernel crash if memory supply is exhausted.

Affected Systems

All Linux kernel builds that ship the rtl8723bs driver are potentially impacted. The vendor is Linux, and product is the Linux kernel. No specific version range is supplied; any kernel containing the driver before the published patch may be vulnerable.

Risk and Exploitability

Based on the description, the attack vector is inferred to be local, requiring an attacker to have local access to provoke a driver failure. The CVSS score of 5.5 indicates moderate severity, while the EPSS score of less than 1% suggests very low likelihood of exploitation. The vulnerability is not listed in CISA KEV. Although the failure path can be triggered relatively easily, the impact is contained to a kernel memory leak, and the overall risk remains moderate unless an attacker can induce sustained driver failures to exhaust memory.

Generated by OpenCVE AI on May 8, 2026 at 23:54 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply a kernel update that includes the rtl8723bs driver fix
  • If upgrading is not feasible, disable or unload the rtl8723bs driver or replace the device with an alternative adapter
  • Continuously monitor kernel memory usage and system performance for signs of abnormal memory consumption that could indicate a leaking driver

Generated by OpenCVE AI on May 8, 2026 at 23:54 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 08 May 2026 21:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

Thu, 07 May 2026 00:15:00 +0000

Type Values Removed Values Added
References

Wed, 06 May 2026 16:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-401
CWE-772

Wed, 06 May 2026 12:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211_inform_bss_frame() may return NULL on failure. In that case, the allocated buffer 'buf' is not freed and the function returns early, leading to potential memory leak. Fix this by ensuring that 'buf' is freed on both success and failure paths.
Title staging: rtl8723bs: fix memory leak on failure path
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:20:25.453Z

Reserved: 2026-05-01T14:12:55.994Z

Link: CVE-2026-43225

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-06T12:16:42.270

Modified: 2026-05-08T21:22:38.057

Link: CVE-2026-43225

cve-icon Redhat

Severity :

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43225 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-09T00:00:25Z

Weaknesses