CVE-2025-39991 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix NULL dereference in ath11k_qmi_m3_load() If ab->fw.m3_data points to data, then fw pointer remains null. Further, if m3_mem is not allocated, then fw is dereferenced to be passed to ath11k_err function. Replace fw->size by m3_len. Found by Linux Verification Center (linuxtesting.org) with SVACE.

PUBLISHED Reserved 2025-04-16 | Published 2025-10-15 | Updated 2025-10-15 | Assigner Linux

Product status

Default status

unaffected

7db88b962f06a52af5e9a32971012e8f3427cec0 before 1f52119809b76d43759fc47da1cf708690b740a1

affected

7db88b962f06a52af5e9a32971012e8f3427cec0 before 888830b2cbc035838bebefe94502976da94332a5

affected

7db88b962f06a52af5e9a32971012e8f3427cec0 before 500fcc31e488d798937a23dbb1f62db46820c5b2

affected

7db88b962f06a52af5e9a32971012e8f3427cec0 before 3fd2ef2ae2b5c955584a3bee8e83ae7d7a98f782

affected

Default status

affected

6.7

affected

Any version before 6.7

unaffected

6.12.51

unaffected

6.16.11

unaffected

6.17.1

unaffected

6.18-rc1

unaffected

References

git.kernel.org/...c/1f52119809b76d43759fc47da1cf708690b740a1

git.kernel.org/...c/888830b2cbc035838bebefe94502976da94332a5

git.kernel.org/...c/500fcc31e488d798937a23dbb1f62db46820c5b2

git.kernel.org/...c/3fd2ef2ae2b5c955584a3bee8e83ae7d7a98f782

cve.org (CVE-2025-39991)

nvd.nist.gov (CVE-2025-39991)

Download JSON

help @ threatint.eu