Post Syndicated from original https://lwn.net/Articles/911062/

It would appear that there is a set of
memory-related vulnerabilities in the kernel’s WiFi stack that can be
exploited over the air via malicious packets; five CVE numbers have been
assigned to the set. Fixes are headed toward the
mainline and should show up in stable updates before too long; anybody who
uses WiFi on untrusted networks should probably keep an eye out for the
relevant updates.