HOMEVULNERABILITIESCVE-2025-71229
NONE

CVE-2025-71229

Published: February 18, 2026· Updated: Feb 23, 2026

EPSS:0.02%probability of exploitation in 30 daysPercentile:4.2th

Official Description

In the Linux kernel, the following vulnerability has been resolved:

wifi: rtw88: Fix alignment fault in rtw_core_enable_beacon()

rtw_core_enable_beacon() reads 4 bytes from an address that is not a

multiple of 4. This results in a crash on some systems.

Do 1 byte reads/writes instead.

Unable to handle kernel paging request at virtual address ffff8000827e0522

Mem abort info:

ESR = 0x0000000096000021

EC = 0x25: DABT (current EL), IL = 32 bits

SET = 0, FnV = 0

EA = 0, S1PTW = 0

FSC = 0x21: alignment fault

Data abort info:

ISV = 0, ISS = 0x00000021, ISS2 = 0x00000000

CM = 0, WnR = 0, TnD = 0, TagAccess = 0

GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0

swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000005492000

[ffff8000827e0522] pgd=0000000000000000, p4d=10000001021d9403, pud=10000001021da403, pmd=100000011061c403, pte=00780000f3200f13

Internal error: Oops: 0000000096000021 [#1] SMP

Modules linked in: [...] rtw88_8822ce rtw88_8822c rtw88_pci rtw88_core [...]

CPU: 0 UID: 0 PID: 73 Comm: kworker/u32:2 Tainted: G W 6.17.9 #1-NixOS VOLUNTARY

Tainted: [W]=WARN

Hardware name: FriendlyElec NanoPC-T6 LTS (DT)

Workqueue: phy0 rtw_c2h_work [rtw88_core]

pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)

pc : rtw_pci_read32+0x18/0x40 [rtw88_pci]

lr : rtw_core_enable_beacon+0xe0/0x148 [rtw88_core]

sp : ffff800080cc3ca0

x29: ffff800080cc3ca0 x28: ffff0001031fc240 x27: ffff000102100828

x26: ffffd2cb7c9b4088 x25: ffff0001031fc2c0 x24: ffff000112fdef00

x23: ffff000112fdef18 x22: ffff000111c29970 x21: 0000000000000001

x20: 0000000000000001 x19: ffff000111c22040 x18: 0000000000000000

x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000

x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000

x11: 0000000000000000 x10: 0000000000000000 x9 : ffffd2cb6507c090

x8 : 0000000000000000 x7 : 0000000000000000 x6 : 0000000000000000

x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000000

x2 : 0000000000007f10 x1 : 0000000000000522 x0 : ffff8000827e0522

Call trace:

rtw_pci_read32+0x18/0x40 [rtw88_pci] (P)

rtw_hw_scan_chan_switch+0x124/0x1a8 [rtw88_core]

rtw_fw_c2h_cmd_handle+0x254/0x290 [rtw88_core]

rtw_c2h_work+0x50/0x98 [rtw88_core]

process_one_work+0x178/0x3f8

worker_thread+0x208/0x418

kthread+0x120/0x220

ret_from_fork+0x10/0x20

Code: d28fe202 8b020000 f9524400 8b214000 (b9400000)

---[ end trace 0000000000000000 ]---

NVD Source

Technical Analysis

CVE-2025-71229 requires local access, meaning attackers must already have a foothold on the target system.

Exploitation requires some privileges, which limits the exposure to scenarios where an attacker has already gained initial access.

Affected Vendors & Products

Mentioned vendors (from description):
Linux
CPE data not yet available in NVD for this CVE.

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

All References (5)

Quick Facts

CVE IDCVE-2025-71229
SeverityNONE
CISA KEVNo
EPSS (30d)0.02%
PublishedFeb 18, 2026

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2025-71229 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.