Use-After-Free Vulnerability in Realtek Wireless Linux Kernel Driver
CVE-2025-40000

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 15 October 2025

What is CVE-2025-40000?

A use-after-free vulnerability exists in the Realtek wireless driver within the Linux kernel, specifically in the rtw89_core_tx_kick_off_and_wait() function. This flaw can lead to unpredictable behavior when the function attempts to access a data structure that has already been freed, resulting in potential memory corruption. The issue arises from a race condition between the completion of data processing and the thread signaling its completion. Improper handling can allow malicious actors to exploit this oversight, potentially leading to system crashes or unauthorized access.

Affected Version(s)

Linux 1ae5ca615285d5d4f72d1de464716d85dffef19f < 895cccf639ac015f3d5f993218cf098db82ac145

Linux 1ae5ca615285d5d4f72d1de464716d85dffef19f

References

https://git.kernel.org/stable/c/895cccf639ac015f3d5f99321...

https://git.kernel.org/stable/c/f21f530b03b4b23448edb531a...

https://git.kernel.org/stable/c/bdb3c41b358cf87d99e39d393...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2025
Vulnerability Reserved
Apr 16, 2025

JSON