CVE-2025-68182
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: fix potential use after free in iwl_mld_remove_link()
This code frees "link" by calling kfree_rcu(link, rcu_head) and then it dereferences "link" to get the "link->fw_id". Save the "link->fw_id" first to avoid a potential use after free.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | d1e879ec600f9b3bdd253167533959facfefb17b < 5b4a239c9f94e1606435f1842fc6fd426d607dbb | affected |
| Linux | Linux | d1e879ec600f9b3bdd253167533959facfefb17b < 77e67d5daaf155f7d0f99f4e797c4842169ec19e | affected |
| Linux | Linux | 6.15 | affected |
| Linux | Linux | 0 < 6.15 | unaffected |
| Linux | Linux | 6.17.8 <= 6.17.* | unaffected |
| Linux | Linux | 6.18 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/5b4a239c9f94e1606435f1842fc6fd426d607dbb
- https://git.kernel.org/stable/c/77e67d5daaf155f7d0f99f4e797c4842169ec19e
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.