Linux Kernel Off-By-One Vulnerability in mt7925 Load Clc Function

Vulnerability

An off-by-one vulnerability has been identified and fixed in the Linux kernel's mt76 wifi driver, specifically within the mt7925 module. The issue arose in the mt7925_load_clc() function, where a comparison operator was incorrectly set, leading to an out-of-bounds read and write. The vulnerability has been addressed by correcting the comparison to ensure it properly prevents such out-of-bounds operations.

Impact

The vulnerability could lead to out-of-bounds read and write operations, potentially causing memory corruption or allowing for arbitrary code execution.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

5.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

5.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Off-By-One Vulnerability in mt7925 Load Clc Function

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating