CVE-2025-68738

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7996: fix null pointer deref in mt7996_conf_tx()

If a link does not have an assigned channel yet, mt7996_vif_link returns NULL. We still need to store the updated queue settings in that case, and apply them later. Move the location of the queue params to within struct mt7996_vif_link.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc0df2f0caa8dde0d50f36649ee28a54c5079281b < 96841352aaba7723c20afb3a5356746810ef8198affected
LinuxLinuxc0df2f0caa8dde0d50f36649ee28a54c5079281b < b8f34c1c5c4f5130c20e3253c95ba1d844d402b9affected
LinuxLinuxc0df2f0caa8dde0d50f36649ee28a54c5079281b < 79277f8ad15ec5f255ed0e1427c7a8a3e94e7f52affected
LinuxLinux6.14affected
LinuxLinux0 < 6.14unaffected
LinuxLinux6.17.13 <= 6.17.*unaffected
LinuxLinux6.18.2 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References