PT-2025-42274 · Linux+3 · Linux Kernel+3

Published

2025-10-15

·

Updated

2026-05-07

·

CVE-2025-40000

CVSS v2.0

7.7

High

VectorAV:A/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc1+
Description The Linux kernel contains a use-after-free flaw within the rtw89 core component. Specifically, the issue occurs in the rtw89 core tx kick off and wait() function when accessing already freed memory associated with skb data. This is a result of a race condition between the waiting and signaling threads during completion processing. The rtw89 core tx kick off and wait() function attempts to access memory that has already been freed by another thread, leading to a potential system crash or unpredictable behavior. The vulnerable function is called during scan completion and involves interactions with the skbuff head cache.
Recommendations Update to Linux kernel version 6.17.0-rc1+ or later.

Exploit

Fix

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2026-02771
CVE-2025-40000
OPENSUSE-SU-2025:15671-1
OPENSUSE-SU-2025:20091-1
OPENSUSE-SU-2026:10301-1
SUSE-SU-2025:21040-1
SUSE-SU-2025:21052-1
SUSE-SU-2025:21056-1
SUSE-SU-2025:21064-1
SUSE-SU-2025:21080-1
SUSE-SU-2025:21147-1
SUSE-SU-2025:21180-1
SUSE-SU-2025:4057-1
SUSE-SU-2025:4128-1
SUSE-SU-2025:4132-1
SUSE-SU-2025:4140-1
SUSE-SU-2025:4141-1
SUSE-SU-2025:4301-1
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8165-1
USN-8261-1

Affected Products

Linuxmint
Linux Kernel
Suse
Ubuntu