CVE-2025-37796

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: at76c50x: fix use after free access in at76_disconnect The memory pointed to by priv is freed at the end of at76_delete_device function (using ieee80211_free_hw). But the code then accesses the udev field of the freed object to put the USB device. This may also lead to a memory leak of the usb device. Fix this by using udev from interface.

Reserved 2025-04-16 | Published 2025-05-01 | Updated 2025-05-26 | Assigner Linux

Product status

Default status
unaffected

29e20aa6c6aff35c81d4da2e2cd516dadb569061 before c731cdfddcf1be1590d5ba8c9b508f98e3a2b3d6
affected

29e20aa6c6aff35c81d4da2e2cd516dadb569061 before 6e4ab3e574c2a335b40fa1f70d1c54fcb58ab33f
affected

29e20aa6c6aff35c81d4da2e2cd516dadb569061 before 3c619aec1f538333b56746d2f796aab1bca5c9a5
affected

29e20aa6c6aff35c81d4da2e2cd516dadb569061 before 5e7df74745700f059dc117a620e566964a2e8f2c
affected

29e20aa6c6aff35c81d4da2e2cd516dadb569061 before 7ca513631fa6ad3011b8b9197cdde0f351103704
affected

29e20aa6c6aff35c81d4da2e2cd516dadb569061 before a9682bfef2cf3802515a902e964d774e137be1b9
affected

29e20aa6c6aff35c81d4da2e2cd516dadb569061 before 152721cbae42713ecfbca6847e0f102ee6b19546
affected

29e20aa6c6aff35c81d4da2e2cd516dadb569061 before 27c7e63b3cb1a20bb78ed4a36c561ea4579fd7da
affected

Default status
affected

3.17
affected

Any version before 3.17
unaffected

5.4.293
unaffected

5.10.237
unaffected

5.15.181
unaffected

6.1.135
unaffected

6.6.88
unaffected

6.12.25
unaffected

6.14.4
unaffected

6.15
unaffected

References

git.kernel.org/...c/c731cdfddcf1be1590d5ba8c9b508f98e3a2b3d6

git.kernel.org/...c/6e4ab3e574c2a335b40fa1f70d1c54fcb58ab33f

git.kernel.org/...c/3c619aec1f538333b56746d2f796aab1bca5c9a5

git.kernel.org/...c/5e7df74745700f059dc117a620e566964a2e8f2c

git.kernel.org/...c/7ca513631fa6ad3011b8b9197cdde0f351103704

git.kernel.org/...c/a9682bfef2cf3802515a902e964d774e137be1b9

git.kernel.org/...c/152721cbae42713ecfbca6847e0f102ee6b19546

git.kernel.org/...c/27c7e63b3cb1a20bb78ed4a36c561ea4579fd7da

cve.org (CVE-2025-37796)

nvd.nist.gov (CVE-2025-37796)

Download JSON