CVE-2025-38406
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38406
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38406.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-38406
- Downstream
- Related
- Published
- 2025-07-25T13:13:29.646Z
- Modified
- 2025-11-28T02:34:59.301271Z
- Summary
- wifi: ath6kl: remove WARN on bad firmware input
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
wifi: ath6kl: remove WARN on bad firmware input
If the firmware gives bad input, that's nothing to do with the driver's stack at this point etc., so the WARN_ON() doesn't add any value. Additionally, this is one of the top syzbot reports now. Just print a message, and as an added bonus, print the sizes too.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38406.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/27d07deea35ae67f2e75913242e25bdb7e1114e5
- https://git.kernel.org/stable/c/327997afbb5e62532c28c1861ab5534c01969c9a
- https://git.kernel.org/stable/c/347827bd0c5680dac2dd59674616840c4d5154f1
- https://git.kernel.org/stable/c/46b47d4b06fa7f234d93f0f8ac43798feafcff89
- https://git.kernel.org/stable/c/7a2afdc5af3b82b601f6a2f0d1c90d5f0bc27aeb
- https://git.kernel.org/stable/c/89bd133529a4d2d68287128b357e49adc00ec690
- https://git.kernel.org/stable/c/e6c49f0b203a987c306676d241066451b74db1a5
- https://git.kernel.org/stable/c/e7417421d89358da071fd2930f91e67c7128fbff
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38406.json
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
- https://nvd.nist.gov/vuln/detail/CVE-2025-38406
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced1da177e4c3f41524e886b7f1b8a0c1fc7321cac2Fixed7a2afdc5af3b82b601f6a2f0d1c90d5f0bc27aebFixede6c49f0b203a987c306676d241066451b74db1a5Fixed46b47d4b06fa7f234d93f0f8ac43798feafcff89Fixed89bd133529a4d2d68287128b357e49adc00ec690Fixed347827bd0c5680dac2dd59674616840c4d5154f1Fixed327997afbb5e62532c28c1861ab5534c01969c9aFixed27d07deea35ae67f2e75913242e25bdb7e1114e5Fixede7417421d89358da071fd2930f91e67c7128fbff
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.4.296
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.240
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.187
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.144
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.97
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.12.37
- Type
- ECOSYSTEM
- Events
-
Introduced6.13.0Fixed6.15.6