Linux Kernel ath12k Destination Ring Invalid Entry Fetch Vulnerability

Vulnerability

A vulnerability in the Linux kernel's ath12k wireless driver has been addressed, which involved an incorrect fetching of entries from the destination ring in the 'ath12k_dp_mon_srng_process' function. The issue arose because the function used to retrieve the next entry was meant for source rings, leading to potential data corruption or crashes by accessing incorrect memory locations. This vulnerability was due to the different handling mechanisms of source and destination rings, where the wrong function call resulted in improper pointer arithmetic and ring management.

Impact

The vulnerability could cause data corruption or system crashes by accessing incorrect memory locations, leading to potential instability or erroneous behavior in the system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ath12k Destination Ring Invalid Entry Fetch Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating