CVE-2025-38420

UNKNOWN 0.0

wifi: carl9170: do not ping device which has failed to load firmware

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: wifi: carl9170: do not ping device which has failed to load firmware Syzkaller reports [1, 2] crashes caused by an attempts to ping the device which has failed to load firmware. Since such a device doesn't pass 'ieee80211_register_hw()', an internal workqueue managed by 'ieee80211_queue_work()' is not yet created and an attempt to queue work on it causes null-ptr-deref. [1] https://syzkaller.appspot.com/bug?extid=9a4aec827829942045ff [2] https://syzkaller.appspot.com/bug?extid=0d8afba53e8fb2633217

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jul 25, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

e4a668c59080f862af3ecc28b359533027cbe434 < 0140d3d37f0f1759d1fdedd854c7875a86e15f8d e4a668c59080f862af3ecc28b359533027cbe434 < 8a3734a6f4c05fd24605148f21fb2066690d61b3 e4a668c59080f862af3ecc28b359533027cbe434 < 527fad1ae32ffa2d4853a1425fe1c8dbb8c9744c e4a668c59080f862af3ecc28b359533027cbe434 < bfeede26e97ce4a15a0b961118de4a0e28c9907a e4a668c59080f862af3ecc28b359533027cbe434 < 4e9ab5c48ad5153cc908dd29abad0cd2a92951e4 e4a668c59080f862af3ecc28b359533027cbe434 < 301268dbaac8e9013719e162a000202eac8054be e4a668c59080f862af3ecc28b359533027cbe434 < 11ef72b3312752c2ff92f3c1e64912be3228ed36 e4a668c59080f862af3ecc28b359533027cbe434 < 15d25307692312cec4b57052da73387f91a2e870

Linux / Linux

2.6.38

References

NVD ↗ CVE.org ↗ EPSS Data ↗