CVE-2025-38600

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7925: fix off by one in mt7925_mcu_hw_scan()

The ssid->ssids[] and sreq->ssids[] arrays have MT7925_RNR_SCAN_MAX_BSSIDS elements so this >= needs to be > to prevent an out of bounds access.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8284815ca161e0fa0861cc4085f1c0141e10a34d < 4d80d4fa986c5da99042b66bf30a028e7f564156affected
LinuxLinux8284815ca161e0fa0861cc4085f1c0141e10a34d < b3a431fe2e399b2e0cc5f43f7e9d63d63d3710eeaffected
LinuxLinux6.16affected
LinuxLinux0 < 6.16unaffected
LinuxLinux6.16.1 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

References