Key Information Vulnerability Description: - In the function, is used to retrieve the next entry from the destination ring. This is incorrect, as the function is designed for source rings, not destination rings. - This leads to invalid entry retrieval, potentially causing data corruption or crashes due to accessing incorrect memory locations. Fix: - Replace with to ensure correct retrieval of entries from the destination ring, preventing invalid memory access. Test Platforms: - QCN9274 hw2.0 PCI WLAN.WBE.1.3.1-00173-QCAHKSPL_SILICONZ-1 - WCN7850 hw2.0 WLAN.HMT.1.0.c5-00481-QCAHMTSWPL_V1.0_V2.0_SILICONZ-3 Code Changes: Commit Information: - Author: P Praneesh - Committer: Jeff Johnson - Commit Date: 2025-01-26 10:41:29 -0800 - Commit ID: 63fdc4509bcf483e79548de6bc08bf3c8e504bb3