{"id":"CVE-2026-43225","summary":"staging: rtl8723bs: fix memory leak on failure path","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix memory leak on failure path\n\ncfg80211_inform_bss_frame() may return NULL on failure. In that case,\nthe allocated buffer 'buf' is not freed and the function returns early,\nleading to potential memory leak.\nFix this by ensuring that 'buf' is freed on both success and failure paths.","modified":"2026-06-18T03:57:33.195729397Z","published":"2026-05-06T11:28:24.289Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43225.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/017295b17bf1f477246c95bd253a7ef0cb4684c9"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8311bb40698ba027649d5d1ca84ad4bf25270546"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9874e33ce52ba449ab0ade78752a2d37a2294617"},{"type":"WEB","url":"https://git.kernel.org/stable/c/9f70f78e22b321429afc77befecedf05543d4e2c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a968c6a39607c129b8ac2c3c2a5e8923574e90d0"},{"type":"WEB","url":"https://git.kernel.org/stable/c/abe850d82c8cb72d28700673678724e779b1826e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/af48c1a0abe849e167fc754b6c260b6d8350b6fd"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43225.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-43225"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"554c0a3abf216c991c5ebddcdb2c08689ecd290b"},{"fixed":"9874e33ce52ba449ab0ade78752a2d37a2294617"},{"fixed":"a968c6a39607c129b8ac2c3c2a5e8923574e90d0"},{"fixed":"8311bb40698ba027649d5d1ca84ad4bf25270546"},{"fixed":"9f70f78e22b321429afc77befecedf05543d4e2c"},{"fixed":"af48c1a0abe849e167fc754b6c260b6d8350b6fd"},{"fixed":"017295b17bf1f477246c95bd253a7ef0cb4684c9"},{"fixed":"abe850d82c8cb72d28700673678724e779b1826e"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43225.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.12.0"},{"fixed":"5.15.202"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.165"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.128"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.75"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.16"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"6.19.6"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43225.json"}}],"schema_version":"1.7.5"}