CVE-2025-68182

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: iwlwifi: fix potential use after free in iwl_mld_remove_link()

This code frees "link" by calling kfree_rcu(link, rcu_head) and then it dereferences "link" to get the "link->fw_id". Save the "link->fw_id" first to avoid a potential use after free.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd1e879ec600f9b3bdd253167533959facfefb17b < 5b4a239c9f94e1606435f1842fc6fd426d607dbbaffected
LinuxLinuxd1e879ec600f9b3bdd253167533959facfefb17b < 77e67d5daaf155f7d0f99f4e797c4842169ec19eaffected
LinuxLinux6.15affected
LinuxLinux0 < 6.15unaffected
LinuxLinux6.17.8 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References