-
CVE-2025-38292
- EPSS 0.03%
- Published 10.07.2025 07:42:07
- Last modified 10.07.2025 13:17:30
- Source 416baaa9-dc9f-4396-8d5f-8c081f
- Teams watchlist Login
- Open Login
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix invalid access to memory In ath12k_dp_rx_msdu_coalesce(), rxcb is fetched from skb and boolean is_continuation is part of rxcb. Currently, after freeing the skb, the rxcb->is_continuation accessed again which is wrong since the memory is already freed. This might lead use-after-free error. Hence, fix by locally defining bool is_continuation from rxcb, so that after freeing skb, is_continuation can be used. Compile tested only.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
VendorLinux
≫
Product
Linux
Default Statusunaffected
Version <
371b340affa52f280f6eadfd25fbd43f09f0d5c0
Version
d889913205cf7ebda905b1e62c5867ed4e39f6c2
Status
affected
Version <
5f09d16cd57764c95c8548fe5b70672c9ac01127
Version
d889913205cf7ebda905b1e62c5867ed4e39f6c2
Status
affected
Version <
9f17747fbda6fca934854463873c4abf8061491d
Version
d889913205cf7ebda905b1e62c5867ed4e39f6c2
Status
affected
VendorLinux
≫
Product
Linux
Default Statusaffected
Version
6.3
Status
affected
Version <
6.3
Version
0
Status
unaffected
Version <=
6.12.*
Version
6.12.34
Status
unaffected
Version <=
6.15.*
Version
6.15.3
Status
unaffected
Version <=
*
Version
6.16
Status
unaffected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.053 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|