CVE-2025-38657

UNKNOWN 0.0

wifi: rtw89: mcc: prevent shift wrapping in rtw89_core_mlsr_switch()

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: mcc: prevent shift wrapping in rtw89_core_mlsr_switch() The "link_id" value comes from the user via debugfs. If it's larger than BITS_PER_LONG then that would result in shift wrapping and potentially an out of bounds access later. In fact, we can limit it to IEEE80211_MLD_MAX_NUM_LINKS (15). Fortunately, only root can write to debugfs files so the security impact is minimal.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Aug 22, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

9dd85e739ce0765f022014c3e0713e1007d7ef60 < 417cfa9cc44fbe6bceab786f9a4ee5a210f1288e 9dd85e739ce0765f022014c3e0713e1007d7ef60 < 53cf488927a0f79968f9c03c4d1e00d2a79731c3

Linux / Linux

6.16

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/417cfa9cc44fbe6bceab786f9a4ee5a210f1288e git.kernel.org: https://git.kernel.org/stable/c/53cf488927a0f79968f9c03c4d1e00d2a79731c3