CVE-2025-39864

UNKNOWN 0.0

wifi: cfg80211: fix use-after-free in cmp_bss()

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmp_bss() Following bss_free() quirk introduced in commit 776b3580178f ("cfg80211: track hidden SSID networks properly"), adjust cfg80211_update_known_bss() to free the last beacon frame elements only if they're not shared via the corresponding 'hidden_beacon_bss' pointer.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Sep 19, 2025
Last Updated	May 12, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6 < a8bb681e879ca3c9f722aa08d3d7ae41c42a8807 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6 < a97a9791e455bb0cd5e7a38b5abcb05523d4e21c 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6 < ff040562c10a540b8d851f7f4145fa112977f853 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6 < 6854476d9e1aeaaf05ebc98d610061c2075db07d 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6 < b7d08929178c16398278613df07ad65cf63cce9d 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6 < 5b7ae04969f822283a95c866967e42b4d75e0eef 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6 < 912c4b66bef713a20775cfbf3b5e9bd71525c716 3ab8227d3e7d1d2bf1829675d3197e3cb600e9f6 < 26e84445f02ce6b2fe5f3e0e28ff7add77f35e08

Linux / Linux

5.4

References

NVD ↗ CVE.org ↗ EPSS Data ↗