CVE-2025-39732
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-39732
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-39732.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-39732
- Downstream
- Related
- Published
- 2025-09-07T15:16:20.684Z
- Modified
- 2025-11-20T10:30:28.014767Z
- Summary
- wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitrate_mask()
ath11kmacdisablepeerfixedrate() is passed as the iterator to ieee80211iteratestationsatomic(). Note in this case the iterator is required to be atomic, however ath11kmacdisablepeerfixed_rate() does not follow it as it might sleep. Consequently below warning is seen:
BUG: sleeping function called from invalid context at wmi.c:304 Call Trace: <TASK> dumpstacklvl _mightresched.cold ath11kwmicmdsend ath11kwmisetpeerparam ath11kmacdisablepeerfixedrate ieee80211iteratestationsatomic ath11kmacopsetbitratemask.cold
Change to ieee80211iteratestations_mtx() to fix this issue.
Tested-on: WCN6855 hw2.0 PCI WLAN.HSP.1.1-03125-QCAHSPSWPLV1V2SILICONZLITE-3.6510.30
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/65c12b104cb942d588a1a093acc4537fb3d3b129
- https://git.kernel.org/stable/c/6bdef22d540258ca06f079f7b6ae100669a19b47
- https://git.kernel.org/stable/c/7d4d0db0dc9424de2bdc0b45e919e4892603356f
- https://git.kernel.org/stable/c/9c0e3144924c7db701575a73af341d33184afeaf
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd5c65159f2895379e11ca13f62feabe93278985dFixed9c0e3144924c7db701575a73af341d33184afeaf
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd5c65159f2895379e11ca13f62feabe93278985dFixed7d4d0db0dc9424de2bdc0b45e919e4892603356f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd5c65159f2895379e11ca13f62feabe93278985dFixed6bdef22d540258ca06f079f7b6ae100669a19b47
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd5c65159f2895379e11ca13f62feabe93278985dFixed65c12b104cb942d588a1a093acc4537fb3d3b129
Affected versions
v5.*
v5.10
v5.10-rc1
v5.10-rc2
v5.10-rc3
v5.10-rc4
v5.10-rc5
v5.10-rc6
v5.10-rc7
v5.11
v5.11-rc1
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v5.4
v5.4-rc6
v5.4-rc7
v5.4-rc8
v5.5
v5.5-rc1
v5.5-rc2
v5.5-rc3
v5.5-rc4
v5.5-rc5
v5.5-rc6
v5.5-rc7
v5.6
v5.6-rc1
v5.6-rc2
v5.6-rc3
v5.6-rc4
v5.6-rc5
v5.6-rc6
v5.6-rc7
v5.7
v5.7-rc1
v5.7-rc2
v5.7-rc3
v5.7-rc4
v5.7-rc5
v5.7-rc6
v5.7-rc7
v5.8
v5.8-rc1
v5.8-rc2
v5.8-rc3
v5.8-rc4
v5.8-rc5
v5.8-rc6
v5.8-rc7
v5.9
v5.9-rc1
v5.9-rc2
v5.9-rc3
v5.9-rc4
v5.9-rc5
v5.9-rc6
v5.9-rc7
v5.9-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.16
v6.12.17
v6.12.18
v6.12.19
v6.12.2
v6.12.20
v6.12.21
v6.12.22
v6.12.23
v6.12.24
v6.12.25
v6.12.26
v6.12.27
v6.12.28
v6.12.29
v6.12.3
v6.12.30
v6.12.31
v6.12.32
v6.12.33
v6.12.34
v6.12.35
v6.12.36
v6.12.37
v6.12.38
v6.12.39
v6.12.4
v6.12.40
v6.12.41
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.15.1
v6.15.2
v6.15.3
v6.15.4
v6.15.5
v6.15.6
v6.15.7
v6.15.8
v6.15.9
v6.16
v6.16-rc1
v6.16-rc2
v6.16-rc3
v6.16-rc4
v6.16-rc5
v6.16-rc6
v6.16-rc7
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
vanir_signatures
[
{
"digest": {
"line_hashes": [
"165676041379302645141432602356819542245",
"236393358870171775047779463037433234480",
"207814589830735390285079592705844179580",
"162645429086161486970733770890341842307",
"84217919621924360696028934471179659886",
"28648235990497233231915826409039934864",
"13071704545584581340722888857399969130",
"74196729231628315929675851601177755876",
"180147286604731515331192663900259503745",
"78924484400227292292486374160453619009",
"249731741069045545962175934972234396576",
"299873149742213591778047372628625826868"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7d4d0db0dc9424de2bdc0b45e919e4892603356f",
"signature_version": "v1",
"target": {
"file": "drivers/net/wireless/ath/ath11k/mac.c"
},
"deprecated": false,
"id": "CVE-2025-39732-2ce70641",
"signature_type": "Line"
},
{
"digest": {
"line_hashes": [
"165676041379302645141432602356819542245",
"236393358870171775047779463037433234480",
"207814589830735390285079592705844179580",
"162645429086161486970733770890341842307",
"84217919621924360696028934471179659886",
"28648235990497233231915826409039934864",
"13071704545584581340722888857399969130",
"74196729231628315929675851601177755876",
"180147286604731515331192663900259503745",
"78924484400227292292486374160453619009",
"249731741069045545962175934972234396576",
"299873149742213591778047372628625826868"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@65c12b104cb942d588a1a093acc4537fb3d3b129",
"signature_version": "v1",
"target": {
"file": "drivers/net/wireless/ath/ath11k/mac.c"
},
"deprecated": false,
"id": "CVE-2025-39732-454a3bd8",
"signature_type": "Line"
},
{
"digest": {
"line_hashes": [
"165676041379302645141432602356819542245",
"236393358870171775047779463037433234480",
"207814589830735390285079592705844179580",
"162645429086161486970733770890341842307",
"84217919621924360696028934471179659886",
"28648235990497233231915826409039934864",
"13071704545584581340722888857399969130",
"74196729231628315929675851601177755876",
"180147286604731515331192663900259503745",
"78924484400227292292486374160453619009",
"249731741069045545962175934972234396576",
"299873149742213591778047372628625826868"
],
"threshold": 0.9
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6bdef22d540258ca06f079f7b6ae100669a19b47",
"signature_version": "v1",
"target": {
"file": "drivers/net/wireless/ath/ath11k/mac.c"
},
"deprecated": false,
"id": "CVE-2025-39732-92f19a7e",
"signature_type": "Line"
}
]