CVE-2025-68182 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix potential use after free in iwl_mld_remove_link() This code frees "link" by calling kfree_rcu(link, rcu_head) and then it dereferences "link" to get the "link->fw_id". Save the "link->fw_id" first to avoid a potential use after free.

PUBLISHED Reserved 2025-12-16 | Published 2025-12-16 | Updated 2025-12-16 | Assigner Linux

Product status

Default status

unaffected

d1e879ec600f9b3bdd253167533959facfefb17b (git) before 5b4a239c9f94e1606435f1842fc6fd426d607dbb

affected

d1e879ec600f9b3bdd253167533959facfefb17b (git) before 77e67d5daaf155f7d0f99f4e797c4842169ec19e

affected

Default status

affected

6.15

affected

Any version before 6.15

unaffected

6.17.8 (semver)

unaffected

6.18 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/5b4a239c9f94e1606435f1842fc6fd426d607dbb

git.kernel.org/...c/77e67d5daaf155f7d0f99f4e797c4842169ec19e

cve.org (CVE-2025-68182)

nvd.nist.gov (CVE-2025-68182)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu