VYPR
Unrated severityNVD Advisory· Published Jul 3, 2025· Updated Nov 3, 2025

wifi: ath9k_htc: Abort software beacon handling if disabled

CVE-2025-38157

Description

In the Linux kernel, the following vulnerability has been resolved:

wifi: ath9k_htc: Abort software beacon handling if disabled

A malicious USB device can send a WMI_SWBA_EVENTID event from an ath9k_htc-managed device before beaconing has been enabled. This causes a device-by-zero error in the driver, leading to either a crash or an out of bounds read.

Prevent this by aborting the handling in ath9k_htc_swba() if beacons are not enabled.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

124

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.