CVE-2025-39918

Advisory lineage Upstream: 0 Downstream: 10

Downstream

DEBIAN-CVE-2025-39918 OPENSUSE-SU-2025:20081-1 RHSA-2025:22392 RHSA-2025:22395 RHSA-2025:22405 RHSA-2025:22571

Modified

Published: 01 Oct 2025, 07:55

Last modified:11 May 2026, 21:38

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (cve.org)

EPSS Score

0.01% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

01 Oct 2025, 07:55

Published

Vulnerability first disclosed

11 May 2026, 21:38

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: fix linked list corruption Never leave scheduled wcid entries on the temporary on-stack list

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 2%

Affected Systems

linux•linux
≥ 0b3be9d1d34e21dada69c539fbf51a5fe868028a, < e4d5a5fc61fdc65220a1ce078d24c1d20bbb0835 | ≥ 0b3be9d1d34e21dada69c539fbf51a5fe868028a, < c91a59b04f928cb4a1436b0e0a27650883d0388a | ≥ 0b3be9d1d34e21dada69c539fbf51a5fe868028a, < 49fba87205bec14a0f6bd997635bf3968408161e | 6.12
linux•linux_kernel
≥ 6.12, < 6.12.46 | ≥ 6.13, < 6.16.6 | 6.17:rc1 | 6.17:rc2 | 6.17:rc3 | 6.17:rc4