CVE-2026-23133

high

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: fix dma_free_coherent() pointer dma_alloc_coherent() allocates a DMA mapped buffer and stores the addresses in XXX_unaligned fields. Those should be reused when freeing the buffer rather than the aligned addresses.

References

https://git.kernel.org/stable/c/fc8da65f9fe1bc6802f8240b342cfff4f5c7e841

https://git.kernel.org/stable/c/e2dda298ef809aa201ea7c0904c4d064f6c497cb

https://git.kernel.org/stable/c/b0ad924332a96550a84b8c0ae5483e7042d65fa9

https://git.kernel.org/stable/c/9282a1e171ad8d2205067e8ec3bbe4e3cef4f29f

https://git.kernel.org/stable/c/5d6fa4d2c9799c09389588da5118a72d97d87e92

https://git.kernel.org/stable/c/1928851334ecfd6e0d663121ab69ac639d4217a6

https://git.kernel.org/stable/c/07f363f305793baecad41816f73056252f3df61e

Details

Source: Mitre, NVD

Published: 2026-02-14

Updated: 2026-02-14

Risk Information

CVSS v2

Base Score: 6.2

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00024