-

CVE-2025-39864

EPSS 0.05%
Veröffentlicht 19.09.2025 15:26:33
Zuletzt bearbeitet 03.11.2025 18:16:50
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

wifi: cfg80211: fix use-after-free in cmp_bss()

Following bss_free() quirk introduced in commit 776b3580178f
("cfg80211: track hidden SSID networks properly"), adjust
cfg80211_update_known_bss() to free the last beacon frame
elements only if they're not shared via the corresponding
'hidden_beacon_bss' pointer.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 13

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < a8bb681e879ca3c9f722aa08d3d7ae41c42a8807

Version 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6

Status affected

Version < a97a9791e455bb0cd5e7a38b5abcb05523d4e21c

Version 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6

Status affected

Version < ff040562c10a540b8d851f7f4145fa112977f853

Version 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6

Status affected

Version < 6854476d9e1aeaaf05ebc98d610061c2075db07d

Version 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6

Status affected

Version < b7d08929178c16398278613df07ad65cf63cce9d

Version 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6

Status affected

Version < 5b7ae04969f822283a95c866967e42b4d75e0eef

Version 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6

Status affected

Version < 912c4b66bef713a20775cfbf3b5e9bd71525c716

Version 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6

Status affected

Version < 26e84445f02ce6b2fe5f3e0e28ff7add77f35e08

Version 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.4

Status affected

Version < 5.4

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.299

Status unaffected

Version <= 5.10.*

Version 5.10.243

Status unaffected

Version <= 5.15.*

Version 5.15.192

Status unaffected

Version <= 6.1.*

Version 6.1.151

Status unaffected

Version <= 6.6.*

Version 6.6.105

Status unaffected

Version <= 6.12.*

Version 6.12.46

Status unaffected

Version <= 6.16.*

Version 6.16.6

Status unaffected

Version <= *

Version 6.17

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.151

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/a8bb681e879ca3c9f722aa08d3d7ae41c42a8807

https://git.kernel.org/stable/c/a97a9791e455bb0cd5e7a38b5abcb05523d4e21c

https://git.kernel.org/stable/c/ff040562c10a540b8d851f7f4145fa112977f853

https://git.kernel.org/stable/c/6854476d9e1aeaaf05ebc98d610061c2075db07d

https://git.kernel.org/stable/c/b7d08929178c16398278613df07ad65cf63cce9d

https://git.kernel.org/stable/c/5b7ae04969f822283a95c866967e42b4d75e0eef

https://git.kernel.org/stable/c/912c4b66bef713a20775cfbf3b5e9bd71525c716

https://git.kernel.org/stable/c/26e84445f02ce6b2fe5f3e0e28ff7add77f35e08

https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html

https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

https://nvd.nist.gov/vuln/detail/CVE-2025-39864

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-39864

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-39864

EUVD