Impact
Based on the description, it is inferred that calling usb_kill_urb() from interrupt context can trigger a kernel panic or a prolonged deadlock, effectively taking down the WLAN interface and potentially the entire host. The mitigation replaces the call with a simple return of –EBUSY, preventing the risk while preserving normal operation.
Affected Systems
All Linux kernel builds that include the libertas Wi‑Fi driver before the applied patch are potentially vulnerable. The CVE data does not specify particular kernel versions, so any installation containing the unpatched driver issue is confined to the kernel driver layer and does not affect user‑space programs directly.
Risk and Exploitability
Based on the description, the flaw poses a high impact due to the inferred possibility of a kernel crash or deadlock. Its EPSS score of <1% and absence from the CISA KEV catalog indicate that no public exploits are local or privileged access to the affected host to trigger the interrupt‑context condition, thereby limiting the threat to compromised or locally connected systems.
OpenCVE Enrichment