CVE-2025-39862

HIGH

Linux Kernel 6.2-6.16.5 - Out-of-bounds Write in WiFi MT7915 Hardware Restart

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix list corruption after hardware restart Since stations are recreated from scratch, all lists that wcids are added to must be cleared before calling ieee80211_restart_hw. Set wcid->sta = 0 for each wcid entry in order to ensure that they are not added again before they are ready.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/8fa8eb52bc2eb08d93202863b5fc478e0bebc00c

Patch

https://git.kernel.org/stable/c/065c79df595af21d6d1b27d642860faa1d938774

Scores

CVSS v3 7.8

EPSS 0.0013

EPSS Percentile 3.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-787

Status published

Products (9)

linux/Kernel 6.2.0 - 6.16.6linux

Linux/Linux < 6.2

Linux/Linux 6.16.6 - 6.16.*

Linux/Linux 6.17

Linux/Linux 6.2

Linux/Linux 8a55712d124fd8a919e8a69b70643e1a97280b4b - 065c79df595af21d6d1b27d642860faa1d938774

Linux/Linux 8a55712d124fd8a919e8a69b70643e1a97280b4b - 8fa8eb52bc2eb08d93202863b5fc478e0bebc00c

linux/linux_kernel 6.17 rc1 (4 CPE variants)

linux/linux_kernel 6.2 - 6.16.6

Published Sep 19, 2025

Tracked Since Feb 18, 2026