CVE-2026-43144

Source
https://cve.org/CVERecord?id=CVE-2026-43144
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43144.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-43144
Downstream
Published
2026-05-06T11:27:28.220Z
Modified
2026-07-08T08:09:34.535461849Z
Summary
wifi: brcmfmac: Fix potential kernel oops when probe fails
Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: brcmfmac: Fix potential kernel oops when probe fails

When probe of the sdio brcmfmac device fails for some reasons (i.e. missing firmware), the sdiodev->bus is set to error instead of NULL, thus the cleanup later in brcmfsdioremove() tries to free resources via invalid bus pointer. This happens because sdiodev->bus is set 2 times: first in brcmfsdioprobe() and second time in brcmfsdiodprobe(). Fix this by chaning the brcmfsdioprobe() function to return the error code and set sdio->bus only there.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43144.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0ff0843310b74e565901d85f849fb308c3b1f220
Fixed
64ccb0aac41c5055780c2a58bbe2c1b362ceccde
Fixed
379aac7ee8240848aa35f605b06addb4617c863e
Fixed
243307a0d1b0d01538e202c00454c28b21d4432e

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43144.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.16
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.6

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43144.json"