Skip to main content

Linux EUVDEUVD-2026-15362

| CVE-2026-23373 MEDIUM
2026-03-25 Linux
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
SUSE
MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

5
CVSS changed
Apr 24, 2026 - 16:37 NVD
5.5 (MEDIUM)
Patch released
Mar 31, 2026 - 21:13 nvd
Patch available
EUVD ID Assigned
Mar 25, 2026 - 10:45 euvd
EUVD-2026-15362
Analysis Generated
Mar 25, 2026 - 10:45 vuln.today
CVE Published
Mar 25, 2026 - 10:27 nvd
N/A

DescriptionCVE.org

In the Linux kernel, the following vulnerability has been resolved:

wifi: rsi: Don't default to -EOPNOTSUPP in rsi_mac80211_config

This triggers a WARN_ON in ieee80211_hw_conf_init and isn't the expected behavior from the driver - other drivers default to 0 too.

AnalysisAI

The Linux kernel's Realtek WiFi driver (rsi) incorrectly defaults to returning -EOPNOTSUPP error code in the rsi_mac80211_config function, which triggers a WARN_ON condition in ieee80211_hw_conf_init and deviates from expected driver behavior. This affects Linux kernel versions across multiple stable branches where the rsi WiFi driver is compiled and loaded. While not actively exploited in the wild, the issue causes kernel warnings and improper driver initialization that could degrade WiFi functionality or stability on affected systems.

Technical ContextAI

The vulnerability exists in the Linux kernel's mac80211 wireless subsystem, specifically in the Realtek rsi WiFi driver module. The rsi_mac80211_config callback function, which handles hardware configuration requests from the mac80211 stack, was returning -EOPNOTSUPP (Operation Not Supported) as a default error code instead of returning 0 (success) as expected by the ieee80211_hw_conf_init function. This violates the driver API contract and triggers kernel warning messages. The affected CPE is cpe:2.3:a:linux:linux:*:*:*:*:*:*:*:* across multiple stable kernel branches. The root cause is improper error handling design that doesn't align with the mac80211 driver framework expectations.

RemediationAI

Update the Linux kernel to a patched version that includes the rsi driver fix. The patches are available in the stable kernel repositories referenced above; users should upgrade to the latest stable kernel version in their supported series (e.g., 6.1.x, 6.6.x, 6.10.x depending on their distribution). Until patching is feasible, WiFi users on affected systems can work around the driver initialization warning by disabling the rsi driver if alternative WiFi drivers are available, or by suppressing kernel warnings through sysctl (kernel.printk settings) if stability is not impacted. Check with your Linux distribution (Ubuntu, Red Hat, Debian, etc.) for backported kernel packages that include these stable commits.

Vendor StatusVendor

Debian

linux
Release Status Fixed Version Urgency
bullseye not-affected - -
bullseye (security) fixed 5.10.251-1 -
bookworm not-affected - -
bookworm (security) fixed 6.1.164-1 -
trixie vulnerable 6.12.73-1 -
trixie (security) vulnerable 6.12.74-2 -
forky, sid fixed 6.19.8-1 -
(unstable) fixed 6.19.8-1 -

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed

Share

EUVD-2026-15362 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy