Home

Description

In the Linux kernel, the following vulnerability has been resolved: ath11k: fix missing skb drop on htc_tx_completion error On htc_tx_completion error the skb is not dropped. This is wrong since the completion_handler logic expect the skb to be consumed anyway even when an error is triggered. Not freeing the skb on error is a memory leak since the skb won't be freed anywere else. Correctly free the packet on eid >= ATH11K_HTC_EP_COUNT before returning. Tested-on: IPQ8074 hw2.0 AHB WLAN.HK.2.5.0.1-01208-QCAHKSWPL_SILICONZ-1

PUBLISHED Reserved 2025-06-18 | Published 2025-06-18 | Updated 2025-06-18 | Assigner Linux

Product status

Default status
unaffected

f951380a6022440335f668f85296096ba13071ba (git) before dda25326839d6e6b1fe59e79616149e44ea4eaa4
affected

f951380a6022440335f668f85296096ba13071ba (git) before 1f1483361585ae7556492f50f83f038bbdf8c294
affected

f951380a6022440335f668f85296096ba13071ba (git) before e5646fe3b7ef739c392e59da7db6adf5e1fdef42
affected

Default status
affected

5.17
affected

Any version before 5.17
unaffected

5.18.18 (semver)
unaffected

5.19.2 (semver)
unaffected

6.0 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/dda25326839d6e6b1fe59e79616149e44ea4eaa4

git.kernel.org/...c/1f1483361585ae7556492f50f83f038bbdf8c294

git.kernel.org/...c/e5646fe3b7ef739c392e59da7db6adf5e1fdef42

cve.org (CVE-2022-50186)

nvd.nist.gov (CVE-2022-50186)

Download JSON