Linux Kernel ath12k Destination Ring Invalid Entry Fetch Vulnerability

Vulnerability

A vulnerability in the Linux kernel's ath12k Wi-Fi driver has been addressed, which involved an incorrect fetch of entries from the destination ring in the 'ath12k_dp_mon_srng_process' function. The issue arose because the function used to retrieve entries was meant for source rings, leading to potential data corruption or crashes by accessing incorrect memory locations. This vulnerability was caused by a mismatch in handling mechanisms between source and destination rings, resulting in erroneous pointer arithmetic and ring management. The flaw has been fixed by replacing the incorrect function call with one that properly handles destination rings.

Impact

The vulnerability could lead to data corruption or system crashes by allowing the driver to access incorrect memory locations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ath12k Destination Ring Invalid Entry Fetch Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating