[CLSA-2026:1784037722] hostapd: Fix of CVE-2026-58374
Type:
security
Severity:
Important
Release date:
2026-07-14 14:02:19 UTC
Description:
- CVE-2026-58374: reject invalid MLO Link ID (>= MAX_NUM_MLD_LINKS) in Per-STA Profile parsing to prevent an out-of-bounds write
CVEs fixed:
Updated packages:
  • hostapd-2.11-2.el9.tuxcare.els1.x86_64.rpm
    sha:9be9177686a55ebe412d56a7e4193b0ab8ef03b74aaaac266774e9868a048cc3
  • hostapd-logwatch-2.11-2.el9.tuxcare.els1.x86_64.rpm
    sha:264df79d65f0beec17112badedd86c7e4acf72e9438fde2bf50cc871f90bd033
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.