CVE-2025-38316
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38316
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38316.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-38316
- Downstream
- Published
- 2025-07-10T07:42:23Z
- Modified
- 2025-10-22T12:57:52.117640Z
- Summary
- wifi: mt76: mt7996: avoid NULL pointer dereference in mt7996_set_monitor()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: mt7996: avoid NULL pointer dereference in mt7996setmonitor()
The function mt7996setmonitor() dereferences phy before the NULL sanity check.
Fix this to avoid NULL pointer dereference by moving the dereference after the check.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced69d54ce7491d046eaae05de7fb2493319a481991Fixed83a422c8169eef95aef57f7ddc467bb126d9ae81
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced69d54ce7491d046eaae05de7fb2493319a481991Fixedcb423ddad0f6e6f55b1700422ab777b25597cc83
Affected versions
v6.*
v6.13
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.15.1
v6.15.2
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"digest": {
"function_hash": "79188173727192857171433095141838703105",
"length": 445.0
},
"target": {
"file": "drivers/net/wireless/mediatek/mt76/mt7996/main.c",
"function": "mt7996_set_monitor"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@83a422c8169eef95aef57f7ddc467bb126d9ae81",
"id": "CVE-2025-38316-067862ef",
"deprecated": false,
"signature_version": "v1"
},
{
"signature_type": "Function",
"digest": {
"function_hash": "79188173727192857171433095141838703105",
"length": 445.0
},
"target": {
"file": "drivers/net/wireless/mediatek/mt76/mt7996/main.c",
"function": "mt7996_set_monitor"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cb423ddad0f6e6f55b1700422ab777b25597cc83",
"id": "CVE-2025-38316-33b83a1b",
"deprecated": false,
"signature_version": "v1"
},
{
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"326151843721004647495465815385470793849",
"250809997204964717913660035902099354183",
"164344321739459834507155521924931056102",
"313075247980434427416198667438204930138",
"211440159496829524542756489406013968411",
"99497567015981468768860422504404589712"
]
},
"target": {
"file": "drivers/net/wireless/mediatek/mt76/mt7996/main.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@83a422c8169eef95aef57f7ddc467bb126d9ae81",
"id": "CVE-2025-38316-473d8833",
"deprecated": false,
"signature_version": "v1"
},
{
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"326151843721004647495465815385470793849",
"250809997204964717913660035902099354183",
"164344321739459834507155521924931056102",
"313075247980434427416198667438204930138",
"211440159496829524542756489406013968411",
"99497567015981468768860422504404589712"
]
},
"target": {
"file": "drivers/net/wireless/mediatek/mt76/mt7996/main.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@cb423ddad0f6e6f55b1700422ab777b25597cc83",
"id": "CVE-2025-38316-f43b1740",
"deprecated": false,
"signature_version": "v1"
}
]