CVE-2025-39864
HIGHLinux Kernel - Use-After-Free in cfg80211 BSS Comparison
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmp_bss() Following bss_free() quirk introduced in commit 776b3580178f ("cfg80211: track hidden SSID networks properly"), adjust cfg80211_update_known_bss() to free the last beacon frame elements only if they're not shared via the corresponding 'hidden_beacon_bss' pointer.
References (12)
Core 12
Core References
Third Party Advisory, Mailing List
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Third Party Advisory, Mailing List
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-032379.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-089022.html
Scores
CVSS v3
7.8
EPSS
0.0002
EPSS Percentile
5.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-416
Status
published
Products (28)
debian/debian_linux
11.0
linux/Kernel
5.11.0 - 5.15.192linux
linux/Kernel
5.16.0 - 6.1.151linux
linux/Kernel
5.4.0 - 5.4.299linux
linux/Kernel
5.5.0 - 5.10.243linux
linux/Kernel
6.13.0 - 6.16.6linux
linux/Kernel
6.2.0 - 6.6.105linux
linux/Kernel
6.7.0 - 6.12.46linux
Linux/Linux
< 5.4
Linux/Linux
3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6 - 26e84445f02ce6b2fe5f3e0e28ff7add77f35e08
... and 18 more
Published
Sep 19, 2025
Tracked Since
Feb 18, 2026