PT-2025-34405 · Linux+5 · Linux Kernel+5

Syzbot

·

Published

2025-01-01

·

Updated

2026-05-26

·

CVE-2025-38644

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: The Linux kernel contains an issue where TDLS (Tunnel Direct Link Setup) operations were not properly rejected when a station was not associated. Specifically, a warning occurred in the ieee80211 tdls oper() function when attempting to enable a TDLS link immediately after a connection attempt, before association was complete and without prior TDLS setup. This resulted in uninitialized internal state, specifically sdata->u.mgd.tdls peer, leading to a warning in code paths that expected it to be valid. The issue was identified through testing with syzbot.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Use of Uninitialized Resource

Race Condition

Weakness Enumeration

CWE-908CWE-362

Related Identifiers

AZL-66581
AZL-73491
BDU:2025-15779
CVE-2025-38644
DLA-4328-1
ECHO-1ABE-51D3-9899
MGASA-2025-0234
MGASA-2025-0235
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:03204-1
SUSE-SU-2025:03272-1
SUSE-SU-2025:03283-1
SUSE-SU-2025:03290-1
SUSE-SU-2025:03301-1
SUSE-SU-2025:03310-1
SUSE-SU-2025:03314-1
SUSE-SU-2025:03344-1
SUSE-SU-2025:03382-1
SUSE-SU-2025:03383-1
SUSE-SU-2025:03384-1
SUSE-SU-2025:03602-1
SUSE-SU-2025:03633-1
SUSE-SU-2025:03634-1
SUSE-SU-2025:03636-1
SUSE-SU-2025:03638-1
SUSE-SU-2025:03646-1
SUSE-SU-2025:03650-1
SUSE-SU-2025:03652-1
SUSE-SU-2025:03653-1
SUSE-SU-2025:03656-1
SUSE-SU-2025:03662-1
SUSE-SU-2025:03663-1
SUSE-SU-2025:03664-1
SUSE-SU-2025:03666-1
SUSE-SU-2025:03671-1
SUSE-SU-2025:03672-1
SUSE-SU-2025:20653-1
SUSE-SU-2025:20669-1
SUSE-SU-2025:20739-1
SUSE-SU-2025:20756-1
SUSE-SU-2025:20873-1
SUSE-SU-2025:20874-1
SUSE-SU-2025:20875-1
SUSE-SU-2025:20876-1
SUSE-SU-2025:20877-1
SUSE-SU-2025:20878-1
SUSE-SU-2025:20879-1
SUSE-SU-2025:20881-1
SUSE-SU-2025:20882-1
SUSE-SU-2025:20883-1
SUSE-SU-2025:20884-1
SUSE-SU-2025:20885-1
SUSE-SU-2025:20886-1
SUSE-SU-2025:20887-1
SUSE-SU-2025:20888-1
SUSE-SU-2025:20890-1
SUSE-SU-2025:20891-1
SUSE-SU-2025:20902-1
SUSE-SU-2025:20903-1
SUSE-SU-2025:20904-1
SUSE-SU-2025:20905-1
SUSE-SU-2025:20906-1
SUSE-SU-2025:20907-1
SUSE-SU-2025:20909-1
SUSE-SU-2025:20912-1
SUSE-SU-2025:20913-1
SUSE-SU-2025:20914-1
SUSE-SU-2025:20915-1
SUSE-SU-2025:20916-1
SUSE-SU-2025:20917-1
SUSE-SU-2025:20918-1
SUSE-SU-2025:20920-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:3675-1
SUSE-SU-2025:3679-1
SUSE-SU-2025:3683-1
SUSE-SU-2025:3703-1
SUSE-SU-2025:3704-1
SUSE-SU-2025:3705-1
SUSE-SU-2025:3712-1
SUSE-SU-2025:3717-1
SUSE-SU-2025:3720-1
SUSE-SU-2025:3721-1
SUSE-SU-2025:3731-1
SUSE-SU-2025:3733-1
SUSE-SU-2025:3734-1
SUSE-SU-2025:3736-1
SUSE-SU-2025:3740-1
SUSE-SU-2025:3742-1
SUSE-SU-2025:3748-1
SUSE-SU-2025:3755-1
SUSE-SU-2025:3762-1
SUSE-SU-2025:3764-1
SUSE-SU-2025:3765-1
SUSE-SU-2025:3768-1
SUSE-SU-2025:3771-1
SUSE-SU-2025:3772-1
SUSE-SU-2025:4123-1
SUSE-SU-2025_03204-1
SUSE-SU-2025_03272-1
SUSE-SU-2025_03290-1
SUSE-SU-2025_03301-1
SUSE-SU-2025_03310-1
SUSE-SU-2025_03314-1
SUSE-SU-2025_03344-1
SUSE-SU-2025_03382-1
USN-7879-1
USN-7879-2
USN-7879-3
USN-7879-4
USN-7880-1
USN-7934-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu