CVE-2025-39991

Advisory lineage Upstream: 0 Downstream: 28

Downstream

DEBIAN-CVE-2025-39991 OPENSUSE-SU-2025:15671-1 OPENSUSE-SU-2025:20091-1 OPENSUSE-SU-2026:10301-1 SUSE-SU-2025:21040-1 SUSE-SU-2025:21052-1

Deferred

Published: 15 Oct 2025, 07:58

Last modified:11 May 2026, 21:40

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

0.03% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

15 Oct 2025, 07:58

Published

Vulnerability first disclosed

11 May 2026, 21:40

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix NULL dereference in ath11k_qmi_m3_load() If ab->fw.m3_data points to data, then fw pointer remains null. Further, if m3_mem is not allocated, then fw is dereferenced to be passed to ath11k_err function. Replace fw->size by m3_len. Found by Linux Verification Center (linuxtesting.org) with SVACE.

EPSS Trends

Current EPSS score: 0.03%• Percentile: 9%

Affected Systems

linux•linux
≥ 7db88b962f06a52af5e9a32971012e8f3427cec0, < 1f52119809b76d43759fc47da1cf708690b740a1 | ≥ 7db88b962f06a52af5e9a32971012e8f3427cec0, < 888830b2cbc035838bebefe94502976da94332a5 | ≥ 7db88b962f06a52af5e9a32971012e8f3427cec0, < 500fcc31e488d798937a23dbb1f62db46820c5b2 | ≥ 7db88b962f06a52af5e9a32971012e8f3427cec0, < 3fd2ef2ae2b5c955584a3bee8e83ae7d7a98f782 | 6.7