Bug 2376370 (CVE-2025-38199) - CVE-2025-38199 kernel: wifi: ath12k: Fix memory leak due to multiple rx_stats allocation
Summary: CVE-2025-38199 kernel: wifi: ath12k: Fix memory leak due to multiple rx_stats...
Keywords:
Status: NEW
Alias: CVE-2025-38199
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-07-04 14:02 UTC by OSIDB Bzimport
Modified: 2025-07-07 11:27 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2025-07-04 14:02:02 UTC 
In the Linux kernel, the following vulnerability has been resolved:

wifi: ath12k: Fix memory leak due to multiple rx_stats allocation

rx_stats for each arsta is allocated when adding a station.
arsta->rx_stats will be freed when a station is removed.

Redundant allocations are occurring when the same station is added
multiple times. This causes ath12k_mac_station_add() to be called
multiple times, and rx_stats is allocated each time. As a result there
is memory leaks.

Prevent multiple allocations of rx_stats when ath12k_mac_station_add()
is called repeatedly by checking if rx_stats is already allocated
before allocating again. Allocate arsta->rx_stats if arsta->rx_stats
is NULL respectively.

Tested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.3.1-00173-QCAHKSWPL_SILICONZ-1
Tested-on: WCN7850 hw2.0 PCI WLAN.HMT.1.0.c5-00481-QCAHMTSWPL_V1.0_V2.0_SILICONZ-3
Comment 1 Michal Findra 2025-07-06 09:36:37 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025070417-CVE-2025-38199-287e@gregkh/T
Note You need to log in before you can comment on or make changes to this bug.