{"id":"CVE-2025-38343","summary":"wifi: mt76: mt7996: drop fragments with multicast or broadcast RA","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mt76: mt7996: drop fragments with multicast or broadcast RA\n\nIEEE 802.11 fragmentation can only be applied to unicast frames.\nTherefore, drop fragments with multicast or broadcast RA. This patch\naddresses vulnerabilities such as CVE-2020-26145.","modified":"2026-04-16T04:38:53.068624640Z","published":"2025-07-10T08:15:12.154Z","related":["SUSE-SU-2025:02853-1","SUSE-SU-2025:02923-1","SUSE-SU-2025:02969-1","SUSE-SU-2025:02996-1","SUSE-SU-2025:02997-1","SUSE-SU-2025:03011-1","SUSE-SU-2025:03023-1","SUSE-SU-2025:20577-1","SUSE-SU-2025:20586-1","SUSE-SU-2025:20601-1","SUSE-SU-2025:20602-1","SUSE-SU-2025:21074-1","SUSE-SU-2025:21139-1","SUSE-SU-2025:21179-1","openSUSE-SU-2025:20081-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38343.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/24900688ee47071aa6a61e78473999b5b80f0423"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5fd5b8132b5de08c99eea003f7715ff2e361b007"},{"type":"WEB","url":"https://git.kernel.org/stable/c/80fda1cd7b0a1edd0849dc71403a070d0922118d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d4b93f9c2f666011dcf810050ef60a6b8d06f186"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38343.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-38343"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"98686cd21624c75a043e96812beadddf4f6f48e5"},{"fixed":"24900688ee47071aa6a61e78473999b5b80f0423"},{"fixed":"d4b93f9c2f666011dcf810050ef60a6b8d06f186"},{"fixed":"5fd5b8132b5de08c99eea003f7715ff2e361b007"},{"fixed":"80fda1cd7b0a1edd0849dc71403a070d0922118d"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38343.json"}}],"schema_version":"1.7.5"}