Vulnerability DatabaseCVE-2025-39890

CVE-2025-39890:
Linux Debian vulnerability analysis and mitigation

Overview

A memory leak vulnerability was identified in the Linux kernel's ath12k WiFi driver component, specifically in the ath12kservicereadyextevent function. The vulnerability was assigned CVE-2025-39890 and was disclosed on September 24, 2025. The issue affects the Linux kernel's wireless networking subsystem, particularly the Qualcomm ath12k driver for QCN9274 hardware (NVD).

Technical details

The vulnerability occurs in the ath12kservicereadyextevent() function where svcrdyext.macphycaps is not properly freed in failure cases. This results in a memory leak of size 1024 bytes. The issue was confirmed through kmemleak traces showing an unreferenced object at address 0xffff8b3eb5789c00. The vulnerability was verified on QCN9274 hw2.0 PCI WLAN.WBE.1.4.1-00199-QCAHKSWPL_SILICONZ-1 hardware (NVD).

Impact

The memory leak can lead to gradual system memory depletion over time, potentially affecting system stability and performance. While the leak is relatively small (1024 bytes per occurrence), repeated triggers could accumulate to cause significant memory consumption in long-running systems (NVD).

Mitigation and workarounds

The fix involves properly freeing svcrdyext.macphycaps in the error case to prevent the memory leak. This has been implemented in the kernel source code and is available through kernel updates (NVD).

Additional resources

Source: This report was generated using AI

Related Linux Debian vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-59343	HIGH	8.7	JavaScript	tar-fs	No	Yes	Sep 24, 2025
CVE-2025-60020	MEDIUM	6.4	Linux Debian	nncp	No	No	Sep 24, 2025
CVE-2025-8869	MEDIUM	5.9	Python	rhel8/flatpak-runtime	No	Yes	Sep 24, 2025
CVE-2025-39890	N/A	N/A	Linux Debian	linux	No	Yes	Sep 24, 2025
CVE-2025-39889	N/A	N/A	Linux Kernel	kernel-rt-64k-modules-partner	No	Yes	Sep 24, 2025