CVE-2025-23129

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue occurs when a shared IRQ is used by the driver due to platform limitation, and the IRQ affinity hint is not cleared before freeing the IRQ in the error path. This results in a warning message. The vulnerability is related to the ath11k pci alloc msi() function and the ath11k pcic free irq() function. To fix the issue, the IRQ affinity hint is cleared before calling ath11k pcic free irq() in the error path.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404

Related Identifiers

BDU:2026-02290

CVE-2025-23129

ECHO-CA2B-9348-007C

OPENSUSE-SU-2025_01614-1

OPENSUSE-SU-2025_01707-1

RHSA-2025:20095

RHSA-2025:20518

SUSE-SU-2025:01614-1

SUSE-SU-2025:01707-1

SUSE-SU-2025:01919-1

SUSE-SU-2025:01951-1

SUSE-SU-2025:01964-1

SUSE-SU-2025:01967-1

SUSE-SU-2025:01972-1

SUSE-SU-2025:20343-1

SUSE-SU-2025:20344-1

SUSE-SU-2025:20354-1

SUSE-SU-2025:20355-1

SUSE-SU-2025_01614-1

SUSE-SU-2025_01707-1

SUSE-SU-2025_01951-1

SUSE-SU-2025_01964-1

SUSE-SU-2025_01967-1

SUSE-SU-2025_01972-1

USN-7594-1

USN-7594-2

USN-7594-3

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8165-1

USN-8261-1

Affected Products

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Hat

Suse

Ubuntu

CVE-2025-23129

Weakness Enumeration

Related Identifiers

Affected Products

References · 2916