CVE-2025-37990

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage()

The function brcmf_usb_dl_writeimage() calls the function brcmf_usb_dl_cmd() but dose not check its return value. The 'state.state' and the 'state.bytes' are uninitialized if the function brcmf_usb_dl_cmd() fails. It is dangerous to use uninitialized variables in the conditions.

Add error handling for brcmf_usb_dl_cmd() to jump to error handling path if the brcmf_usb_dl_cmd() fails and the 'state.state' and the 'state.bytes' are uninitialized.

Improve the error message to report more detailed error information.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux71bb244ba2fd5390eefe4ee9054abdb3f8b05922 < 972bf75e53f778c78039c5d139dd47443a6d66a1affected
LinuxLinux71bb244ba2fd5390eefe4ee9054abdb3f8b05922 < 62a4f2955d9a1745bdb410bf83fb16666d8865d6affected
LinuxLinux71bb244ba2fd5390eefe4ee9054abdb3f8b05922 < 508be7c001437bacad7b9a43f08a723887bcd1eaaffected
LinuxLinux71bb244ba2fd5390eefe4ee9054abdb3f8b05922 < 524b70441baba453b193c418e3142bd31059cc1faffected
LinuxLinux71bb244ba2fd5390eefe4ee9054abdb3f8b05922 < 08424a0922fb9e32a19b09d852ee87fb6c497538affected
LinuxLinux71bb244ba2fd5390eefe4ee9054abdb3f8b05922 < bdb435ef9815b1ae28eefffa01c6959d0fcf1fa7affected
LinuxLinux71bb244ba2fd5390eefe4ee9054abdb3f8b05922 < fa9b9f02212574ee1867fbefb0a675362a71b31daffected
LinuxLinux71bb244ba2fd5390eefe4ee9054abdb3f8b05922 < 8e089e7b585d95122c8122d732d1d5ef8f879396affected
LinuxLinux3.4affected
LinuxLinux0 < 3.4unaffected
LinuxLinux5.4.294 <= 5.4.*unaffected
LinuxLinux5.10.238 <= 5.10.*unaffected
LinuxLinux5.15.182 <= 5.15.*unaffected
LinuxLinux6.1.138 <= 6.1.*unaffected
LinuxLinux6.6.90 <= 6.6.*unaffected
LinuxLinux6.12.28 <= 6.12.*unaffected
LinuxLinux6.14.6 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References