Security tracker / CVE-2025-21729

CVE-2025-21729

wifi: rtw89: fix race between cancel_hw_scan and hw_scan completion

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in 895907779752 ("rtw89: 8852a: add ieee80211_ops::hw_scan").
 carnil> Vulnerable versions: 5.18-rc1.

Bugs

Status

Branch	Status
upstream	released (6.14-rc1) [ba4bb0402c60e945c4c396c51f0acac3c3e3ea5c]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.13-upstream-stable	released (6.13.2) [5afcd6fcd1e1c1fd6bcc9a360c121d10eddade67]
6.12-upstream-stable	released (6.12.13) [2403cb3c235d5e339b580cc3a825493769fadca8]
6.6-upstream-stable	needed
6.1-upstream-stable	needed
5.10-upstream-stable	N/A "Vulnerable code not present"
sid	released (6.12.13-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	needed
5.10-bullseye-security	N/A "Vulnerable code not present"