CVE-2025-39919
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7996: add missing check for rx wcid entries
Non-station wcid entries must not be passed to the rx functions. In case of the global wcid entry, it could even lead to corruption in the wcid array due to pointer being casted to struct mt7996_sta_link using container_of.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 7464b12b7d92b9641d4664735b9f3c3f0b6173d9 < 69dcc19048fcdc3fb166fd25b805470ee8fc0eb1 | affected |
| Linux | Linux | 7464b12b7d92b9641d4664735b9f3c3f0b6173d9 < 4a522b01e368eec58d182ecc47d24f49a39e440d | affected |
| Linux | Linux | 6.15 | affected |
| Linux | Linux | 0 < 6.15 | unaffected |
| Linux | Linux | 6.16.6 <= 6.16.* | unaffected |
| Linux | Linux | 6.17 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/69dcc19048fcdc3fb166fd25b805470ee8fc0eb1
- https://git.kernel.org/stable/c/4a522b01e368eec58d182ecc47d24f49a39e440d
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.