In the Linux kernel, the following vulnerability has been resolved:
wifi: rtw88: 8822b: Avoid WARNING in rtw8822bconfigtrx_mode()
rtw8822bsetantenna() can be called from userspace when the chip is powered off. In that case a WARNING is triggered in rtw8822bconfigtrx_mode() because trying to read the RF registers when the chip is powered off returns an unexpected value.
Call rtw8822bconfigtrxmode() in rtw8822bset_antenna() only when the chip is powered on.
------------[ cut here ]------------ write RF mode table fail WARNING: CPU: 0 PID: 7183 at rtw8822b.c:824 rtw8822bconfigtrxmode.constprop.0+0x835/0x840 [rtw888822b] CPU: 0 UID: 0 PID: 7183 Comm: iw Tainted: G W OE 6.17.5-arch1-1 #1 PREEMPT(full) 01c39fc421df2af799dd5e9180b572af860b40c1 Tainted: [W]=WARN, [O]=OOTMODULE, [E]=UNSIGNEDMODULE Hardware name: LENOVO 82KR/LNVNB161216, BIOS HBCN18WW 08/27/2021 RIP: 0010:rtw8822bconfigtrxmode.constprop.0+0x835/0x840 [rtw888822b] Call Trace: <TASK> rtw8822bsetantenna+0x57/0x70 [rtw888822b 370206f42e5890d8d5f48eb358b759efa37c422b] rtwopssetantenna+0x50/0x80 [rtw88core 711c8fb4f686162be4625b1d0b8e8c6a5ac850fb] ieee80211setantenna+0x60/0x100 [mac80211 f1845d85d2ecacf3b71867635a050ece90486cf3] nl80211setwiphy+0x384/0xe00 [cfg80211 296485ee85696d2150309a6d21a7fbca83d3dbda] ? netdevruntodo+0x63/0x550 genlfamilyrcvmsgdoit+0xfc/0x160 genlrcv_msg+0x1aa/0x2b0 ? __pfxnl80211pre_doit+0x10/0x10 [cfg80211 296485ee85696d2150309a6d21a7fbca83d3dbda] ? __pfxnl80211set_wiphy+0x10/0x10 [cfg80211 296485ee85696d2150309a6d21a7fbca83d3dbda] ? __pfxnl80211post_doit+0x10/0x10 [cfg80211 296485ee85696d2150309a6d21a7fbca83d3dbda] ? __pfxgenlrcvmsg+0x10/0x10 netlinkrcvskb+0x59/0x110 genlrcv+0x28/0x40 netlink_unicast+0x285/0x3c0 ? __allocskb+0xdb/0x1a0 netlinksendmsg+0x20d/0x430 ____syssendmsg+0x39f/0x3d0 ? importiovec+0x2f/0x40 ___syssendmsg+0x99/0xe0 ? refillobj_stock+0x12e/0x240 _syssendmsg+0x8a/0xf0 dosyscall64+0x81/0x970 ? dosyscall64+0x81/0x970 ? ksysread+0x73/0xf0 ? dosyscall64+0x81/0x970 ? countmemcgevents+0xc2/0x190 ? handlemmfault+0x1d7/0x2d0 ? douseraddrfault+0x21a/0x690 ? excpagefault+0x7e/0x1a0 entrySYSCALL64afterhwframe+0x76/0x7e </TASK> ---[ end trace 0000000000000000 ]---
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71297.json",
"cna_assigner": "Linux"
}