CVE-2025-38348: 
Linux Kernel vulnerability analysis and mitigation

A buffer overflow vulnerability was discovered in the Linux kernel's p54 WiFi driver (CVE-2025-38348), specifically in the p54rxeeprom_readback() function. The vulnerability was reported by Robert Morris and disclosed on July 10, 2025. The issue affects Linux systems using the Intersil p54 WiFi interface driver (NVD).

The vulnerability exists in the p54rxeepromreadback() function where a malicious USB device pretending to be an Intersil p54 wifi interface can generate an eepromreadback message with a large eeprom->v1.len value. This causes the function to copy data beyond the end of priv->eeprom buffer. The eeprom->v{1,2}.len is normally set by the driver in p54downloadeeprom(), and the device is expected to provide the same length back to the driver (NVD).

If exploited, this vulnerability can lead to a buffer overflow condition, potentially causing system crashes or panics due to memory overrun. However, the impact is somewhat limited as the vendor firmware has a proprietary license and is not present on most distributions by default (NVD).

The issue has been patched by adding the size to the common device context, preventing p54rxeeprom_readback from relying on potentially tampered values. The fix also includes checks to verify if the firmware has altered the value and prevents copying in such cases (NVD).