CVE-2025-22128

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

n the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Clear affinity hint before calling ath12k_pci_free_irq() in error path If a shared IRQ is used by the driver due to platform limitation, then the IRQ affinity hint is set right after the allocation of IRQ vectors in ath12k_pci_msi_alloc(). This does no harm unless one of the functions requesting the IRQ fails and attempt to free the IRQ. This may end up with a warning from the IRQ core that is expecting the affinity hint to be cleared before freeing the IRQ: kernel/irq/manage.c: /* make sure affinity_hint is cleaned up */ if (WARN_ON_ONCE(desc->affinity_hint)) desc->affinity_hint = NULL; So to fix this issue, clear the IRQ affinity hint before calling ath12k_pci_free_irq() in the error path. The affinity will be cleared once again further down the error path due to code organization, but that does no harm.

References

Link	Resource
https://git.kernel.org/stable/c/35b33ba76765ce9e72949d957f3cf1feafd2955c	Patch
https://git.kernel.org/stable/c/a69a594794fcad96d4cfce12aab6c5014a12b4c8	Patch
https://git.kernel.org/stable/c/b43b1e2c52db77c872bd60d30cdcc72c47df70c7	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

History

03 Nov 2025, 18:25

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
References	~~() https://git.kernel.org/stable/c/35b33ba76765ce9e72949d957f3cf1feafd2955c -~~	() https://git.kernel.org/stable/c/35b33ba76765ce9e72949d957f3cf1feafd2955c - Patch
References	~~() https://git.kernel.org/stable/c/a69a594794fcad96d4cfce12aab6c5014a12b4c8 -~~	() https://git.kernel.org/stable/c/a69a594794fcad96d4cfce12aab6c5014a12b4c8 - Patch
References	~~() https://git.kernel.org/stable/c/b43b1e2c52db77c872bd60d30cdcc72c47df70c7 -~~	() https://git.kernel.org/stable/c/b43b1e2c52db77c872bd60d30cdcc72c47df70c7 - Patch
CPE		cpe:2.3:o:linux:linux_kernel::::::::
CWE		NVD-CWE-noinfo
First Time		Linux linux Kernel Linux

27 Jun 2025, 11:15

Type	Values Removed	Values Added
References		() https://git.kernel.org/stable/c/a69a594794fcad96d4cfce12aab6c5014a12b4c8 -
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: wifi: ath12k: Borrar la sugerencia de afinidad antes de llamar a ath12k_pci_free_irq() en la ruta de error Si el controlador usa una IRQ compartida debido a una limitación de la plataforma, la sugerencia de afinidad de IRQ se establece justo después de la asignación de vectores de IRQ en ath12k_pci_msi_alloc(). Esto no causa daño a menos que una de las funciones que solicita la IRQ falle e intente liberarla. Esto puede terminar con una advertencia del núcleo de IRQ que espera que se borre la sugerencia de afinidad antes de liberar la IRQ: kernel/irq/manage.c: /* asegúrese de que affinity_hint se limpie */ if (WARN_ON_ONCE(desc->affinity_hint)) desc->affinity_hint = NULL; Para solucionar este problema, borre la indicación de afinidad de IRQ antes de llamar a ath12k_pci_free_irq() en la ruta de error. La afinidad se borrará más adelante en la ruta de error debido a la organización del código, pero esto no perjudica.

16 Apr 2025, 15:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-04-16 15:16

Updated : 2025-11-03 18:25

NVD link : CVE-2025-22128

Mitre link : CVE-2025-22128

CVE.ORG link : CVE-2025-22128

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

5.5 /10