PT-2025-27744 · Linux+10 · Linux Kernel+10

Published

2025-05-13

·

Updated

2026-04-20

·

CVE-2025-38159

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: A buffer size issue in the Linux kernel's wifi component, specifically in the rtw88 module, has been resolved. The issue involved reading out of bounds due to an incorrect buffer size setting. The para array is passed to the rtw fw bt wifi control function, which reads 5 bytes. The function rtw fw bt wifi control is defined as void rtw fw bt wifi control(struct rtw dev *rtwdev, u8 op code, u8 *data). The issue was detected using the static analysis tool Svace.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Out of bounds Read

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2025:13589
ALSA-2025:13590
ALSA-2025:13962
AZL-64532
BDU:2025-10128
CESA-2025_13589
CESA-2025_13590
CVE-2025-38159
DLA-4328-1
DSA-5973-1
ECHO-C264-54B3-9378
INFSA-2025_13589
INFSA-2025_13590
INFSA-2025_13962
MGASA-2025-0218
MGASA-2025-0219
OESA-2025-1823
OESA-2025-1824
OESA-2025-1870
OPENSUSE-SU-2025:20081-1
RHSA-2025:13589
RHSA-2025:13590
RHSA-2025:13598
RHSA-2025:13962
RHSA-2025_13589
RHSA-2025_13590
RHSA-2025_13962
SUSE-SU-2025:02853-1
SUSE-SU-2025:02923-1
SUSE-SU-2025:02969-1
SUSE-SU-2025:02996-1
SUSE-SU-2025:02997-1
SUSE-SU-2025:03011-1
SUSE-SU-2025:03023-1
SUSE-SU-2025:20577-1
SUSE-SU-2025:20586-1
SUSE-SU-2025:20601-1
SUSE-SU-2025:20602-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025_02853-1
SUSE-SU-2025_02969-1
SUSE-SU-2025_02996-1
SUSE-SU-2025_02997-1
SUSE-SU-2025_03011-1
SUSE-SU-2025_03023-1
SUSE-SU-2026:0350-1
SUSE-SU-2026:0369-1
SUSE-SU-2026:0411-1
SUSE-SU-2026:0474-1
SUSE-SU-2026:0496-1
SUSE-SU-2026:0617-1
SUSE-SU-2026:0939-1
SUSE-SU-2026:0940-1
SUSE-SU-2026:0983-1
SUSE-SU-2026:0985-1
SUSE-SU-2026:0992-1
SUSE-SU-2026:0997-1
SUSE-SU-2026:1000-1
SUSE-SU-2026:1002-1
SUSE-SU-2026:1039-1
SUSE-SU-2026:1046-1
SUSE-SU-2026:1048-1
SUSE-SU-2026:1049-1
SUSE-SU-2026:1059-1
SUSE-SU-2026:1073-1
SUSE-SU-2026:1101-1
SUSE-SU-2026:1125-1
SUSE-SU-2026:20847-1
SUSE-SU-2026:20848-1
SUSE-SU-2026:20849-1
SUSE-SU-2026:20850-1
SUSE-SU-2026:20857-1
SUSE-SU-2026:20858-1
SUSE-SU-2026:20859-1
SUSE-SU-2026:20880-1
SUSE-SU-2026:20881-1
SUSE-SU-2026:20882-1
SUSE-SU-2026:20891-1
SUSE-SU-2026:20892-1
SUSE-SU-2026:20893-1
SUSE-SU-2026:20894-1
USN-7769-1
USN-7769-2
USN-7769-3
USN-7770-1
USN-7771-1
USN-7774-1
USN-7774-2
USN-7774-3
USN-7774-4
USN-7774-5
USN-7775-1
USN-7775-2
USN-7775-3
USN-7776-1
USN-7789-1
USN-7789-2
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Almalinux
Astra Linux
Centos
Debian
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu