CVE-2025-71227
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
wifi: mac80211: don't WARN for connections on invalid channels
It's not clear (to me) how exactly syzbot managed to hit this, but it seems conceivable that e.g. regulatory changed and has disabled a channel between scanning (channel is checked to be usable by cfg80211_get_ies_channel_number) and connecting on the channel later.
With one scenario that isn't covered elsewhere described above, the warning isn't good, replace it with a (more informative) error message.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | f2d9d270c15ae0139b54a7e7466d738327e97e03 < 10d3ff7e5812c8d70300f6fa8f524009a06aa7e1 | affected |
| Linux | Linux | f2d9d270c15ae0139b54a7e7466d738327e97e03 < 99067b58a408a384d2a45c105eb3dce980a862ce | affected |
| Linux | Linux | 3.8 | affected |
| Linux | Linux | 0 < 3.8 | unaffected |
| Linux | Linux | 6.18.10 <= 6.18.* | unaffected |
| Linux | Linux | 6.19 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/10d3ff7e5812c8d70300f6fa8f524009a06aa7e1
- https://git.kernel.org/stable/c/99067b58a408a384d2a45c105eb3dce980a862ce
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.