Out-of-bounds Access Vulnerability in Linux Kernel's ath12k Component
CVE-2025-39761

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
11 September 2025

What is CVE-2025-39761?

A vulnerability exists in the ath12k component of the Linux kernel where the Transmission Identifier (TID) is not decremented prior to peer cleanup during error handling in the RX peer fragment setup. This oversight can result in potential out-of-bounds access within the peer's rx_tid array, creating significant security risks. Proper decrementing of the TID is essential to ensure safe cleanup and prevent exploitation stemming from failed RX peer fragment setups. This issue was identified during a routine code review and has undergone compile testing.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux d889913205cf7ebda905b1e62c5867ed4e39f6c2

Linux d889913205cf7ebda905b1e62c5867ed4e39f6c2 < 7c3e99fd4a66a5ac9c7dd32db07359666efe0002

Linux d889913205cf7ebda905b1e62c5867ed4e39f6c2

References

https://git.kernel.org/stable/c/eb1e1526b82b8cf31f1ef9ca8...
https://git.kernel.org/stable/c/7c3e99fd4a66a5ac9c7dd32db...
https://git.kernel.org/stable/c/a3b73c72c42348bf1555fd2b0...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.