CVE-2025-39864
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-19

Last updated on: 2025-11-03

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmp_bss() Following bss_free() quirk introduced in commit 776b3580178f ("cfg80211: track hidden SSID networks properly"), adjust cfg80211_update_known_bss() to free the last beacon frame elements only if they're not shared via the corresponding 'hidden_beacon_bss' pointer.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-19
Last Modified
2025-11-03
Generated
2026-06-16
AI Q&A
2025-09-19
EPSS Evaluated
2026-06-15
NVD
CVE-2025-39864
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
linux kernel 5.10.244-1
linux kernel 6.1.153-1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a use-after-free issue in the Linux kernel's wifi component, specifically in the cfg80211 subsystem. It occurs in the cmp_bss() function due to improper handling of beacon frame elements after freeing them, which can lead to accessing freed memory. The fix involves adjusting cfg80211_update_known_bss() to only free the last beacon frame elements if they are not shared via the hidden_beacon_bss pointer.

Impact Analysis

A use-after-free vulnerability in the wifi subsystem of the Linux kernel can potentially lead to system instability, crashes, or exploitation by attackers to execute arbitrary code or cause denial of service. This could impact the reliability and security of devices running affected Linux kernel versions.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-39864. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart