Linux Kernel Link ID Management Vulnerability in cfg80211 Wi-Fi Subsystem

Vulnerability

A vulnerability in the Linux kernel's Wi-Fi management component, cfg80211, has been addressed. The issue arose during the process of deleting a link, where the link ID was prematurely removed from the valid_links bitmap before necessary clean-up tasks were completed. This premature removal caused a warning to be triggered, as certain functions, like cfg80211_cac_event(), require the link ID to remain in the bitmap during the deletion process. The vulnerability has been resolved by adjusting the sequence of operations, ensuring the link ID is cleared from the bitmap only after all clean-up activities are finished.

Impact

The vulnerability could lead to a warning being triggered during the link deletion process, indicating a potential issue with link management in the Wi-Fi subsystem.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Link ID Management Vulnerability in cfg80211 Wi-Fi Subsystem

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating