CVE-2025-38406

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38406
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38406.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38406
Downstream
Related
Published
2025-07-25T13:13:29.646Z
Modified
2026-03-20T12:42:50.623931Z
Summary
wifi: ath6kl: remove WARN on bad firmware input
Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath6kl: remove WARN on bad firmware input

If the firmware gives bad input, that's nothing to do with the driver's stack at this point etc., so the WARN_ON() doesn't add any value. Additionally, this is one of the top syzbot reports now. Just print a message, and as an added bonus, print the sizes too.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38406.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
bdcd81707973cf8aa9305337166f8ee842a050d4
Fixed
7a2afdc5af3b82b601f6a2f0d1c90d5f0bc27aeb
Fixed
e6c49f0b203a987c306676d241066451b74db1a5
Fixed
46b47d4b06fa7f234d93f0f8ac43798feafcff89
Fixed
89bd133529a4d2d68287128b357e49adc00ec690
Fixed
347827bd0c5680dac2dd59674616840c4d5154f1
Fixed
327997afbb5e62532c28c1861ab5534c01969c9a
Fixed
27d07deea35ae67f2e75913242e25bdb7e1114e5
Fixed
e7417421d89358da071fd2930f91e67c7128fbff

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38406.json"