Linux Kernel Vulnerability in MT76 Driver Affecting Wireless Communication
CVE-2025-39862

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 19 September 2025

What is CVE-2025-39862?

A vulnerability exists within the Linux kernel's MT76 driver, specifically related to the MT7915 wireless chipset. Upon hardware restart, the lists that hold wireless client identifiers (WCIDs) risk becoming corrupted unless cleared beforehand. This flaw necessitates that all WCID lists are reset before invoking the ieee80211_restart_hw function, ensuring that each WCID entry is properly initialized. Neglecting this precaution could lead to unauthorized or faulty wireless connections, compromising network integrity and performance.

Affected Version(s)

Linux 8a55712d124fd8a919e8a69b70643e1a97280b4b < 8fa8eb52bc2eb08d93202863b5fc478e0bebc00c

Linux 8a55712d124fd8a919e8a69b70643e1a97280b4b < 065c79df595af21d6d1b27d642860faa1d938774

Linux 6.2

References

https://git.kernel.org/stable/c/8fa8eb52bc2eb08d93202863b...

https://git.kernel.org/stable/c/065c79df595af21d6d1b27d64...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 19, 2025
Vulnerability Reserved
Apr 16, 2025