CVE-2025-38600 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix off by one in mt7925_mcu_hw_scan() The ssid->ssids[] and sreq->ssids[] arrays have MT7925_RNR_SCAN_MAX_BSSIDS elements so this >= needs to be > to prevent an out of bounds access.

PUBLISHED Reserved 2025-04-16 | Published 2025-08-19 | Updated 2025-09-29 | Assigner Linux

Product status

Default status

unaffected

8284815ca161e0fa0861cc4085f1c0141e10a34d before 4d80d4fa986c5da99042b66bf30a028e7f564156

affected

8284815ca161e0fa0861cc4085f1c0141e10a34d before b3a431fe2e399b2e0cc5f43f7e9d63d63d3710ee

affected

Default status

affected

6.16

affected

Any version before 6.16

unaffected

6.16.1

unaffected

6.17

unaffected

References

git.kernel.org/...c/4d80d4fa986c5da99042b66bf30a028e7f564156

git.kernel.org/...c/b3a431fe2e399b2e0cc5f43f7e9d63d63d3710ee

cve.org (CVE-2025-38600)

nvd.nist.gov (CVE-2025-38600)

Download JSON

help @ threatint.eu