Invalid Memory Access in Linux Kernel's ath12k WLAN Driver
CVE-2025-37976
Currently unrated
What is CVE-2025-37976?
A vulnerability in the Linux kernel's ath12k WLAN driver has been identified where an incorrect function call results in accessing invalid memory locations. The function ath12k_dp_mon_srng_process wrongly utilizes ath12k_hal_srng_src_get_next_entry for fetching entries from a destination ring, leading to potential data corruption and system crashes. This issue arises from the discrepancy in handling source and destination rings, causing improper pointer arithmetic. The fix involves substituting the faulty call with the appropriate ath12k_hal_srng_dst_get_next_entry function, thereby safeguarding against invalid memory accesses.
Affected Version(s)
Linux d889913205cf7ebda905b1e62c5867ed4e39f6c2 < 0c1015493f0e3979bcbd3a12ebc0977578c87f21
Linux 6.3
Linux 6.3