CVE-2025-38600

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix off by one in mt7925_mcu_hw_scan() The ssid->ssids[] and sreq->ssids[] arrays have MT7925_RNR_SCAN_MAX_BSSIDS elements so this >= needs to be > to prevent an out of bounds access.

CVSS

No CVSS.

References

Link	Resource
https://git.kernel.org/stable/c/4d80d4fa986c5da99042b66bf30a028e7f564156
https://git.kernel.org/stable/c/b3a431fe2e399b2e0cc5f43f7e9d63d63d3710ee

Configurations

No configuration.

History

20 Aug 2025, 14:40

Type	Values Removed	Values Added
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: wifi: mt76: mt7925: corrección de uno en mt7925_mcu_hw_scan() Las matrices ssid->ssids[] y sreq->ssids[] tienen elementos MT7925_RNR_SCAN_MAX_BSSIDS, por lo que esto >= debe ser > para evitar un acceso fuera de los límites.

19 Aug 2025, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-19 17:15

Updated : 2025-08-20 14:40

NVD link : CVE-2025-38600

Mitre link : CVE-2025-38600

CVE.ORG link : CVE-2025-38600

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2025-38600

Attach tags to `CVE-2025-38600`