CVE-2025-71234

CWE-787Out-of-bounds WriteCWE-476NULL Pointer Dereference8 documents8 sources
Severity
7.8HIGH
EPSS
0.0%
top 96.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Linux LinuxLinux Linux Kernel
Timeline
PublishedFeb 18

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add The driver does not set hw->sta_data_size, which causes mac80211 to allocate insufficient space for driver private station data in __sta_info_alloc(). When rtl8xxxu_sta_add() accesses members of struct rtl8xxxu_sta_info through sta->drv_priv, this results in a slab-out-of-bounds write. KASAN report on RISC-V (VisionFive 2) with RTL8192EU adapter: BUG: KASAN: slab-out

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

NVDlinux/linux_kernel6.96.12.72+2
CVEListV5linux/linuxeef55f1545c92c7181d5083453dee1296298ad3e5d810ba377eddee95d30766d360a14efbb3d1872+4
Debianlinux< 6.12.73-1+1

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
OSV
CVE-2025-71234: In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add The driver does not set2026-02-18
CVEList
wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add2026-02-18
GHSA
GHSA-365g-rr2h-rx65: In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add The driver does not s2026-02-18

📋Vendor Advisories

3
Red Hat
kernel: wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add2026-02-18
Microsoft
wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add2026-02-10
Debian
CVE-2025-71234: linux - In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8x...2025

🕵️Threat Intelligence

1
Wiz
CVE-2025-71234 Impact, Exploitability, and Mitigation Steps | Wiz