CVE-2025-68729

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s WiFi subsystem, specifically within the ath12k driver. The issue involves incorrect handling of MSDU buffer types in the receive (RX) error path. Packets received from unassociated peers on the REO exception ring are incorrectly identified as MSDU buffer type when the driver expects link descriptor type packets. This leads to the packets not being parsed, but the associated skb (socket buffer) is not freed, potentially causing kernel crashes and memory leaks. The resolution involves updating the RX error handler to explicitly drop MSDU buffer type packets received on the REO exception ring, preventing further processing of invalid packets and improving RX error handling stability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.