CVE-2026-43052

Source
https://cve.org/CVERecord?id=CVE-2026-43052
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43052.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-43052
Downstream
Related
Published
2026-05-01T14:15:46.029Z
Modified
2026-07-11T03:53:49.764295775Z
Summary
wifi: mac80211: check tdls flag in ieee80211_tdls_oper
Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: mac80211: check tdls flag in ieee80211tdlsoper

When NL80211TDLSENABLE_LINK is called, the code only checks if the station exists but not whether it is actually a TDLS station. This allows the operation to proceed for non-TDLS stations, causing unintended side effects like modifying channel context and HT protection before failing.

Add a check for sta->sta.tdls early in the ENABLE_LINK case, before any side effects occur, to ensure the operation is only allowed for actual TDLS peers.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43052.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
941c93cd039852b7ab02c74f4698c99d82bd6cfe
Fixed
e602246235fc2ef06c39b2e9cf147d84d0896b73
Fixed
6813a8b1b240756dad4375f3e020ce10e4e3871b
Fixed
44839ea7e96b3659a1606f3d5267063135479b7c
Fixed
ba5b43db126a5e7378553869e3f7954d9187349f
Fixed
8148c2fda4ebb17104a573649c9b699208ad10ee
Fixed
be81f17151fcb8546a95f35ca8f4231b065985de
Fixed
e77b2937aaa20264e4bd699d3244bdb50e7e3343
Fixed
7d73872d949c488a1d7c308031d6a9d89b5e0a8b

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43052.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
3.2.0
Fixed
5.10.259
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.209
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.142
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.81
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.22
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.12

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43052.json"