CVE-2025-39849

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-39849
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39849.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-39849
Downstream
Related
Published
2025-09-19T15:26:22.073Z
Modified
2026-03-20T12:43:04.500105Z
Summary
wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result()
Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: cfg80211: sme: cap SSID length in __cfg80211connectresult()

If the ssid->datalen is more than IEEE80211MAXSSID_LEN (32) it would lead to memory corruption so add some bounds checking.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39849.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
dd43f8f90206054e7da7593de0a334fb2cd0ea88
Fixed
8e751d46336205abc259ed3990e850a9843fb649
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c38c701851011c94ce3be1ccb3593678d2933fd8
Fixed
e472f59d02c82b511bc43a3f96d62ed08bf4537f
Fixed
31229145e6ba5ace3e9391113376fa05b7831ede
Fixed
5cb7cab7adf9b1e6a99e2081b0e30e9e59d07523
Fixed
62b635dcd69c4fde7ce1de4992d71420a37e51e3
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
bf3c348c5fdcf00a7eeed04a1b83e454d2dca2e5

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39849.json"