Linux Kernel ath12k Wi-Fi Header Vulnerability Leading to Memory Corruption

Vulnerability

A vulnerability in the Linux kernel's ath12k Wi-Fi driver can cause memory corruption by improperly handling packets with a length exceeding the maximum native Wi-Fi header size. This issue arises in the ath12k_dp_rx_h_undecap_nwifi function when processing packets for the DP_RX_DECAP_TYPE_NATIVE_WIFI decap type. The vulnerability has been addressed by adding a sanity check to prevent invalid data access before the SKB (socket buffer) is processed.

Impact

The vulnerability can lead to invalid data access and memory corruption.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ath12k Wi-Fi Header Vulnerability Leading to Memory Corruption

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating