-
CVE-2025-38292
- EPSS 0.03%
- Veröffentlicht 10.07.2025 07:42:07
- Zuletzt bearbeitet 10.07.2025 13:17:30
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- Teams Watchlist Login
- Unerledigt Login
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix invalid access to memory In ath12k_dp_rx_msdu_coalesce(), rxcb is fetched from skb and boolean is_continuation is part of rxcb. Currently, after freeing the skb, the rxcb->is_continuation accessed again which is wrong since the memory is already freed. This might lead use-after-free error. Hence, fix by locally defining bool is_continuation from rxcb, so that after freeing skb, is_continuation can be used. Compile tested only.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. Login
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version <
371b340affa52f280f6eadfd25fbd43f09f0d5c0
Version
d889913205cf7ebda905b1e62c5867ed4e39f6c2
Status
affected
Version <
5f09d16cd57764c95c8548fe5b70672c9ac01127
Version
d889913205cf7ebda905b1e62c5867ed4e39f6c2
Status
affected
Version <
9f17747fbda6fca934854463873c4abf8061491d
Version
d889913205cf7ebda905b1e62c5867ed4e39f6c2
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusaffected
Version
6.3
Status
affected
Version <
6.3
Version
0
Status
unaffected
Version <=
6.12.*
Version
6.12.34
Status
unaffected
Version <=
6.15.*
Version
6.15.3
Status
unaffected
Version <=
*
Version
6.16
Status
unaffected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.053 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|