CVE-2025-37795

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version

Description A vulnerability in the Linux kernel has been resolved. The issue is related to the wifi mac80211 component, where the skb control block key could be removed before the ieee80211 tx dequeue() call, leading to a use-after-free error. This could be exploited by some drivers that use this key in their TX callbacks. The vulnerability is caused by the ieee80211 tx dequeue() function not updating the key in the skb control block when it is NULL.

Recommendations As a temporary workaround, consider disabling the ieee80211 tx dequeue() function until a patch is available. To resolve the issue, update the Linux kernel to a version that includes the fix for this vulnerability. Restrict access to the vulnerable ieee80211 tx h select key() function to minimize the risk of exploitation. Avoid using the skb control block key in the affected TX callbacks until the issue is resolved.