CVE-2025-39919

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7996: add missing check for rx wcid entries

Non-station wcid entries must not be passed to the rx functions. In case of the global wcid entry, it could even lead to corruption in the wcid array due to pointer being casted to struct mt7996_sta_link using container_of.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7464b12b7d92b9641d4664735b9f3c3f0b6173d9 < 69dcc19048fcdc3fb166fd25b805470ee8fc0eb1affected
LinuxLinux7464b12b7d92b9641d4664735b9f3c3f0b6173d9 < 4a522b01e368eec58d182ecc47d24f49a39e440daffected
LinuxLinux6.15affected
LinuxLinux0 < 6.15unaffected
LinuxLinux6.16.6 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References