CVE-2025-38604
📋 TL;DR
A use-after-free vulnerability in the Linux kernel's RTL8187/8187B USB WiFi driver allows a NULL pointer dereference when stopping the device. This can cause kernel panics or system crashes on systems using affected WiFi hardware. The vulnerability affects Linux systems with RTL8187/8187B USB WiFi adapters.
💻 Affected Systems
- Linux kernel with rtl8187 driver
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Kernel panic leading to system crash and denial of service, potentially causing data loss or service disruption.
Likely Case
System crash or kernel panic when stopping/restarting WiFi interface, requiring reboot to restore functionality.
If Mitigated
Minor service interruption during WiFi interface management operations.
🎯 Exploit Status
Exploitation requires physical or local access to trigger WiFi interface stop operations. No remote exploitation vector identified.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Linux kernel stable releases containing commits: 14ca6952691fa8cc91e7644512e6ff24a595283f, 16d8fd74dbfca0ea58645cd2fca13be10cae3cdd, 7858a95566f4ebf59524666683d2dcdba3fca968, 789415771422f4fb9f444044f86ecfaec55df1bd, 81cfe34d0630de4e23ae804dcc08fb6f861dc37d
Vendor Advisory: https://git.kernel.org/stable/c/14ca6952691fa8cc91e7644512e6ff24a595283f
Restart Required: No
Instructions:
1. Update Linux kernel to version containing the fix commits. 2. For distributions: Use package manager to update kernel package. 3. Rebuild kernel if using custom kernel. 4. No reboot required for driver reload, but kernel update may require reboot.
🔧 Temporary Workarounds
Disable rtl8187 driver
allPrevent loading of vulnerable driver module
echo 'blacklist rtl8187' >> /etc/modprobe.d/blacklist.conf
rmmod rtl8187
Avoid using affected WiFi adapters
allDisconnect RTL8187/8187B USB WiFi adapters
🧯 If You Can't Patch
- Disconnect RTL8187/8187B USB WiFi adapters from vulnerable systems
- Avoid stopping/restarting WiFi interfaces on systems with affected hardware
🔍 How to Verify
Check if Vulnerable:
Check if rtl8187 driver is loaded: lsmod | grep rtl8187. Check kernel version: uname -r and compare with patched versions.Check Version:
uname -rVerify Fix Applied:
Verify kernel version includes fix commits. Check dmesg for absence of NULL pointer dereference errors related to rtl8187.📡 Detection & Monitoring
Log Indicators:
- Kernel NULL pointer dereference errors in dmesg/syslog
- Oops messages with rtl8187_tx_cb or ieee80211_tx_status_irqsafe in call trace
- System crash/panic logs when stopping WiFi
Network Indicators:
- Sudden WiFi interface disappearance
- Unexpected network disconnections
SIEM Query:
source="kernel" AND ("NULL pointer dereference" OR "Oops") AND ("rtl8187" OR "ieee80211_tx_status")🔗 References
- https://git.kernel.org/stable/c/14ca6952691fa8cc91e7644512e6ff24a595283f
- https://git.kernel.org/stable/c/16d8fd74dbfca0ea58645cd2fca13be10cae3cdd
- https://git.kernel.org/stable/c/7858a95566f4ebf59524666683d2dcdba3fca968
- https://git.kernel.org/stable/c/789415771422f4fb9f444044f86ecfaec55df1bd
- https://git.kernel.org/stable/c/81cfe34d0630de4e23ae804dcc08fb6f861dc37d
- https://git.kernel.org/stable/c/8c767727f331fb9455b0f81daad832b5925688cb
- https://git.kernel.org/stable/c/c51a45ad9070a6d296174fcbe5c466352836c12b
- https://git.kernel.org/stable/c/c73c773b09e313278f9b960303a2809b8440bac6
- https://git.kernel.org/stable/c/e64732ebff9e24258e7326f07adbe2f2b990daf8
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
