CVE-2025-38406
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38406
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38406.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-38406
- Downstream
- Related
- Published
- 2025-07-25T14:15:32Z
- Modified
- 2025-08-12T21:01:39Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
wifi: ath6kl: remove WARN on bad firmware input
If the firmware gives bad input, that's nothing to do with the driver's stack at this point etc., so the WARN_ON() doesn't add any value. Additionally, this is one of the top syzbot reports now. Just print a message, and as an added bonus, print the sizes too.
- References
-
- https://git.kernel.org/stable/c/27d07deea35ae67f2e75913242e25bdb7e1114e5
- https://git.kernel.org/stable/c/327997afbb5e62532c28c1861ab5534c01969c9a
- https://git.kernel.org/stable/c/347827bd0c5680dac2dd59674616840c4d5154f1
- https://git.kernel.org/stable/c/46b47d4b06fa7f234d93f0f8ac43798feafcff89
- https://git.kernel.org/stable/c/7a2afdc5af3b82b601f6a2f0d1c90d5f0bc27aeb
- https://git.kernel.org/stable/c/89bd133529a4d2d68287128b357e49adc00ec690
- https://git.kernel.org/stable/c/e6c49f0b203a987c306676d241066451b74db1a5
- https://git.kernel.org/stable/c/e7417421d89358da071fd2930f91e67c7128fbff