CVE-2025-38656

HIGH

Linux Kernel 5.4.297-5.4.x - Use-After-Free in iwlwifi DVM Mode Start

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start() Preserve the error code if iwl_setup_deferred_work() fails. The current code returns ERR_PTR(0) (which is NULL) on this path. I believe the missing error code potentially leads to a use after free involving debugfs.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/991e2066f6009d3cb898413058c62dbcc92bd6d2

Patch

https://git.kernel.org/stable/c/1d068272c21d886d06526454b68368100ba0a720

Patch

https://git.kernel.org/stable/c/cf80c02a9fdb6c5bc8508beb6a0f6a1294fc32f6

Scores

CVSS v3 7.8

EPSS 0.0015

EPSS Percentile 4.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (17)

Linux/Linux

Linux/Linux 2e9f85ee3b46453a2f250a57d3a9f10c70c71202

Linux/Linux 5.10.241 - 5.11

Linux/Linux 5.15.190 - 5.16

Linux/Linux 5.4.297 - 5.5

Linux/Linux 6.1.148 - 6.2

Linux/Linux 6.12.42 - 6.13

Linux/Linux 6.6.102 - 6.7

Linux/Linux 6663c52608d8d8727bf1911e6d9218069ba1c85e

Linux/Linux 70a1b527eaea9430b1bd87de59f3b9f6bd225701 - 1d068272c21d886d06526454b68368100ba0a720

... and 7 more

Published Aug 22, 2025

Tracked Since Feb 18, 2026