CVE-2025-38602

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-38602

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38602.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-38602

Downstream

AZL-66443

AZL-73596

BELL-CVE-2025-38602

DEBIAN-CVE-2025-38602

DLA-4327-1

DLA-4328-1

ECHO-b6d6-a695-3db3

MGASA-2025-0234

MGASA-2025-0235

ROOT-OS-DEBIAN-11-CVE-2025-38602

ROOT-OS-DEBIAN-12-CVE-2025-38602

ROOT-OS-DEBIAN-13-CVE-2025-38602

ROOT-OS-UBUNTU-2204-CVE-2025-38602

ROOT-OS-UBUNTU-2404-CVE-2025-38602

SUSE-SU-2025:03272-1

SUSE-SU-2025:03290-1

SUSE-SU-2025:03301-1

SUSE-SU-2025:03382-1

SUSE-SU-2025:03602-1

SUSE-SU-2025:03614-1

SUSE-SU-2025:03633-1

SUSE-SU-2025:03634-1

SUSE-SU-2025:20653-1

SUSE-SU-2025:20669-1

SUSE-SU-2025:20739-1

SUSE-SU-2025:20756-1

SUSE-SU-2025:21074-1

SUSE-SU-2025:21139-1

SUSE-SU-2025:21179-1

SUSE-SU-2026:0473-1

openSUSE-SU-2025:20081-1

Related

Published

2025-08-19T17:03:41.604Z

Modified

2026-05-18T05:57:28.677579711Z

Summary

iwlwifi: Add missing check for alloc_ordered_workqueue

Details

In the Linux kernel, the following vulnerability has been resolved:

iwlwifi: Add missing check for allocorderedworkqueue

Add check for the return value of allocorderedworkqueue since it may return NULL pointer.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38602.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b481de9ca074528fe8c429604e2777db8b89806a

Fixed

c80832d445653baba5ac80cd2c2637c437ac881b

Fixed

b398120fbe0acfef60b16f6a0f69902d385d7728

Fixed

2e9f85ee3b46453a2f250a57d3a9f10c70c71202

Fixed

6663c52608d8d8727bf1911e6d9218069ba1c85e

Fixed

ca980f1911a7144d451d1c31298ab8507c6bd88f

Fixed

7dd6350307af6521b6240b295c93b7eec4daebe6

Fixed

c0e43c3f6c0a79381b468574c241065998412b7c

Fixed

70a1b527eaea9430b1bd87de59f3b9f6bd225701

Fixed

90a0d9f339960448a3acc1437a46730f975efd6a

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38602.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.6.24

Fixed

5.4.297

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.241

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.190

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.148

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.102

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.42

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.15.10

Type: ECOSYSTEM
Events: Introduced

6.16.0

Fixed

6.16.1

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38602.json"