CVE-2025-22119: 
Linux Kernel vulnerability analysis and mitigation

CVE-2025-22119 is a vulnerability discovered in the Linux kernel's wifi subsystem, specifically in the cfg80211 component. The issue was identified on April 16, 2025, and involves an uninitialized wiphyworklock in cfg80211devfree function. The vulnerability affects various Linux kernel versions, including those used in major distributions (NVD, Debian Tracker).

The vulnerability occurs when rfkill allocation fails, causing the wiphy release process to access uninitialized wiphywork related data in cfg80211dev_free. The issue has been assigned a CVSS v3.1 score of 5.5 (Low severity) with a vector string of CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H, indicating local access is required for exploitation (Red Hat).

The vulnerability primarily affects system availability, as indicated by the CVSS metrics showing no impact on confidentiality or integrity but high impact on availability. The issue is particularly relevant to systems utilizing the Linux kernel's wireless networking capabilities (Red Hat).

The fix involves moving the initialization of wiphy_work to occur before rfkill initialization. This has been implemented in various Linux distributions, with some versions already patched. For example, Debian Bullseye has been fixed in versions 5.10.223-1 and 5.10.234-1, while some versions in Bookworm, Trixie, and Sid remain vulnerable (Debian Tracker).