Linux Distros Unpatched Vulnerability : CVE-2025-40000

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: rtw89: fix use-after-free in rtw89coretxkickoffandwait There is a bug observed when rtw89coretxkickoffandwait tries to access already freed skbdata: BUG:...

CVE-2025-40000

CVE-2025-40000 affects the Linux kernel wifi Realtek rtw89 driver. It is a use-after-free in rtw89_core_tx_kick_off_and_wait() when accessing freed skb_data, caused by a race between the waiting and signaling paths of a completion. The issue was fixed in kernel updates (SUSE/OpenSUSE advisories l...

PT-2025-42274

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc1+ Description The Linux kernel contains a use-after-free flaw within the rtw89 core component. Specifically, the issue occurs in the rtw89 core tx kick off and wait function when accessing already freed...

CVE-2025-38647 wifi: rtw89: sar: drop lockdep assertion in rtw89_set_sar_from_acpi

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is triggered on the rtw89 driver startup. It looks meaningless to hold wiphy lock on the early init stage so drop the assertion. WARNING: CPU...

PT-2025-34418 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The rtw89 core mlsr switch function in the Linux kernel is susceptible to a shift wrapping issue. The link id value, obtained from user input via debugfs, can exceed the maximum...

DEBIAN-CVE-2022-49471

In the Linux kernel, the following vulnerability has been resolved: rtw89: cfo: check macid to avoid out-of-bounds Somehow, hardware reports incorrect macid and pollute memory. Check index before we access the array. UBSAN: array-index-out-of-bounds in rtw89/phy.c:2517:23 index 188 is out of rang...