cve 2025 68256

CVE-2025-68256 is a security vulnerability in the Linux kernel's staging Realtek driver for the RTL8723BS wireless chipset. The flaw involves an out-of-bounds read in the driver's Information Element (IE) parser, rtw_get_ie, which could be triggered by a malformed Wi-Fi frame. The fix hardens the parser against such reads, closing a dangerous gap. This vulnerability affects systems using the RTL8723BS driver, commonly found in low-power PCs, single-board computers, and some Android devices. Discussions on WindowsForum cover the technical details of the vulnerability, the affected driver code, and the patch that resolves it.