CVE-2025-38600: 
Linux Ubuntu vulnerability analysis and mitigation

A vulnerability has been identified in the Linux kernel's WiFi subsystem, specifically in the mt7925mcuhwscan() function of the mt76 driver. The issue involves an off-by-one error in array bounds checking where the ssid->ssids[] and sreq->ssids[] arrays with MT7925RNRSCANMAX_BSSIDS elements had incorrect comparison operators, potentially leading to out-of-bounds access (NVD).

The vulnerability stems from an implementation error in the mt7925mcuhwscan() function where a greater-than-or-equal-to (>=) comparison was incorrectly used instead of a strictly greater-than (>) operator when checking array bounds. This affects the ssid->ssids[] and sreq->ssids[] arrays which have MT7925RNRSCANMAX_BSSIDS elements (Debian Tracker).

The vulnerability could potentially lead to an out-of-bounds memory access in the Linux kernel's WiFi subsystem, specifically affecting systems using the mt76 driver with the MT7925 chipset (NVD).

The issue has been fixed in various Linux distributions including Debian Bullseye (5.10.237-1), Bookworm (6.1.147-1), and Trixie (6.12.41-1). Users are advised to update their systems to the patched versions (Debian Tracker).