PT-2025-27702 · Linux+6 · Linux Kernel+6

Published

2025-07-03

Updated

2025-12-03

CVE-2025-38116

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: A use-after-free (UAF) issue was found in the Linux kernel, specifically in the ath12k core init() function. This issue occurs when the execution of ath12k core hw group assign() or ath12k core hw group create() fails, and the registered notifier chain is not unregistered properly. The memory is freed after rmmod, which may trigger a UAF issue if there is a subsequent access to this notifier chain. The issue is fixed by calling ath12k core panic notifier unregister() in failure cases.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025:20095

ALSA-2025:20518

BDU:2025-10782

CVE-2025-38116

INFSA-2025_20518

RHSA-2025:20095

RHSA-2025:20518

RHSA-2025_20518

USN-7769-1

USN-7769-2

USN-7769-3

USN-7770-1

USN-7771-1

USN-7789-1

USN-7789-2

Affected Products

Almalinux

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Rocky Linux

Ubuntu

PT-2025-27702 · Linux+6 · Linux Kernel+6

CVE-2025-38116

Weakness Enumeration

Related Identifiers

Affected Products

References · 566