CVE-2025-38656
wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start()
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start() Preserve the error code if iwl_setup_deferred_work() fails. The current
code returns ERR_PTR(0) (which is NULL) on this path. I believe the
missing error code potentially leads to a use after free involving
debugfs.
En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: wifi: iwlwifi: Se corrige el código de error en iwl_op_mode_dvm_start(). Se conserva el código de error si iwl_setup_deferred_work() falla. El código actual devuelve ERR_PTR(0) (que es NULL) en esta ruta. Creo que la falta del código de error podría provocar un uso posterior a la liberación que involucre debugfs.
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start() Preserve the error code if iwl_setup_deferred_work() fails. The current code returns ERR_PTR(0) (which is NULL) on this path. I believe the missing error code potentially leads to a use after free involving debugfs.
This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2025-04-16 CVE Reserved
- 2025-08-22 CVE Published
- 2025-08-28 CVE Updated
- 2026-04-27 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| https://git.kernel.org/stable/c/c80832d445653baba5ac80cd2c2637c437ac881b | Vuln. Introduced | |
| https://git.kernel.org/stable/c/b398120fbe0acfef60b16f6a0f69902d385d7728 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/2e9f85ee3b46453a2f250a57d3a9f10c70c71202 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/6663c52608d8d8727bf1911e6d9218069ba1c85e | Vuln. Introduced | |
| https://git.kernel.org/stable/c/ca980f1911a7144d451d1c31298ab8507c6bd88f | Vuln. Introduced | |
| https://git.kernel.org/stable/c/7dd6350307af6521b6240b295c93b7eec4daebe6 | Vuln. Introduced |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 5.4.297 Search vendor "Linux" for product "Linux Kernel" and version "5.4.297" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 5.10.241 Search vendor "Linux" for product "Linux Kernel" and version "5.10.241" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 5.15.190 Search vendor "Linux" for product "Linux Kernel" and version "5.15.190" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 6.1.148 Search vendor "Linux" for product "Linux Kernel" and version "6.1.148" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 6.6.102 Search vendor "Linux" for product "Linux Kernel" and version "6.6.102" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 6.12.42 Search vendor "Linux" for product "Linux Kernel" and version "6.12.42" | en |
Affected
| ||||||