CVE-2025-38657

Published: Aug 22, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: mcc: prevent shift wrapping in rtw89_core_mlsr_switch() The "link_id" value comes from the user via debugfs. If it's larger than BITS_PER_LONG then that would result in shift wrapping and potentially an out of bounds access later. In fact, we can limit it to IEEE80211_MLD_MAX_NUM_LINKS (15). Fortunately, only root can write to debugfs files so the security impact is minimal.

Vendor	Product	Versions
Linux	Linux	affected `9dd85e739ce0765f022014c3e0713e1007d7ef60 - < 417cfa9cc44fbe6bceab786f9a4ee5a210f1288e` affected `9dd85e739ce0765f022014c3e0713e1007d7ef60 - < 53cf488927a0f79968f9c03c4d1e00d2a79731c3`
Linux	Linux	affected `6.16` unaffected `0 - < 6.16` unaffected `6.16.1 - <= 6.16.` unaffected `6.17 - <= `

References

https://git.kernel.org/stable/c/417cfa9cc44fbe6bceab786f9a4ee5a210f1288e

https://git.kernel.org/stable/c/53cf488927a0f79968f9c03c4d1e00d2a79731c3

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-38657

Description

Affected Products

References