CVE-2025-38317

HIGH

Linux Kernel 6.11-6.12.33, 6.13-6.15.2, 6.16 - Out-of-bounds Write in ath12k DebugFS

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix buffer overflow in debugfs If the user tries to write more than 32 bytes then it results in memory corruption. Fortunately, this is debugfs so it's limited to root users.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/0c57aa8ef94cffc5c2d68230e19329a03e71a94f

Patch

https://git.kernel.org/stable/c/8c4a200d03574bfcbf54fdb7ba5968b58ad2e0b3

Patch

https://git.kernel.org/stable/c/8c7a5031a6b0d42e640fbd2d5d05f61f74e32dce

Scores

CVSS v3 7.8

EPSS 0.0017

EPSS Percentile 6.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (11)

linux/Kernel 6.11.0 - 6.12.34linux

linux/Kernel 6.13.0 - 6.15.3linux

Linux/Linux < 6.11

Linux/Linux 3f73c24f28b317f22df7870c25ff82f1d625c6c2 - 0c57aa8ef94cffc5c2d68230e19329a03e71a94f

Linux/Linux 3f73c24f28b317f22df7870c25ff82f1d625c6c2 - 8c4a200d03574bfcbf54fdb7ba5968b58ad2e0b3

Linux/Linux 3f73c24f28b317f22df7870c25ff82f1d625c6c2 - 8c7a5031a6b0d42e640fbd2d5d05f61f74e32dce

Linux/Linux 6.11

Linux/Linux 6.12.34 - 6.12.*

Linux/Linux 6.15.3 - 6.15.*

Linux/Linux 6.16

... and 1 more

Published Jul 10, 2025

Tracked Since Feb 18, 2026