CVE-2026-43144
Kernel Oops in Broadcom WiFi SDIO Driver
Publication date: 2026-05-06
Last updated on: 2026-05-06
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux_kernel | brcmfmac | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs in the Linux kernel's brcmfmac wifi driver related to the sdio device probe process. When the probe of the sdio brcmfmac device fails, for example due to missing firmware, the device's bus pointer is incorrectly set to an error value instead of NULL. Later, during cleanup, the driver attempts to free resources using this invalid bus pointer, which can cause a kernel oops (a type of kernel crash). The issue arises because the bus pointer is set twice in different probe functions, and the fix involves changing the probe function to return an error code and set the bus pointer only once.
How can this vulnerability impact me? :
This vulnerability can cause the Linux kernel to crash (kernel oops) when the brcmfmac wifi device probe fails. Such crashes can lead to system instability, unexpected reboots, or denial of service on affected systems using this wifi driver.