OpenWrt 25.12.0-rc4 Changelog

This changelog lists all commits done in OpenWrt since the v25.12.0-rc3 tag, grouped by subsystem. The changes are chronologically ordered from top to bottom and cover the Git repository history until the tagging of the 25.12.0-rc4 release.

See also the release notes that provide a more accessible overview of the main changes in 25.12.0-rc4.

24077b9 microchipsw: enable DCB by default (+3,-1)

5a3c5ec kernel: modules: package Microchip SparX-5 switchdev driver as a module (+17)
53a525f kernel: bump 6.12 to 6.12.67 (+65,-67)
24077b9 microchipsw: enable DCB by default (+3,-1)
890a1d3 kernel: reorder configuration options (+21,-20)
692150e kernel: add missing kernel config option (+1)
12374d8 Revert "kernel: bump 6.12 to 6.12.67" (+67,-65)

27b48d0 qualcommax: ipq50xx: Add support for Zyxel SCR50AXE (+462,-9)
⇒ 1f83ec8 ipq5018: Add BDF for Linksys MX6200 ()
⇒ ed56ad0 qcn6122: Add BDF for Linksys MX6200 ()
⇒ 11715a4 ipq5018: add SCR50AXE BDF's ()
5af0163 uboot-microchipsw: add FIP update flashing shortcut (+2)

f70c393 wifi-scripts: fix WiFi 6E discovery for 6GHz 320MHz operation (+20,-2)
7aeb449 ucode: remove the fs.read_nb patch (-137)
b2b40d0 ucode: update to Git 85922056ef7 (2026-01-16) (+11,-11)
⇒ 45bf891 rtnl: add module documentation (+622,-3)
⇒ 8bbf012 nl80211: add module documentation (+360)
⇒ 40a6aeb nl80211: add new attribute "mlo_links" for per link information (+21,-1)
⇒ 376e873 ubus: complete pending requests when disconnecting locally (+7)
⇒ 32449bf io: add ptsname, tcgetattr, tcsetattr, grantpt, unlockpt (+296,-1)
⇒ 76bf326 digest: fix jsdoc to reveal sha512 functions (+2,-2)
⇒ 58b4597 build: drop remnant (-3)
⇒ 6ef0b3a build: respect bin/lib paths (+10,-7)
⇒ 2813227 build: adjust flags and definitions (+83,-32)
⇒ cb1b1c1 zlib: make chunk size configurable (+13,-1)
⇒ 6f80655 debian: refresh packaging (+34,-9)
⇒ 9fc4889 debian: adjust LTO build (+13,-1)
⇒ a503a49 debian: build "digest" and "zlib" modules (+3)
⇒ ffc48a2 socket: fix off-by-one in uv_to_sockaddr() (+2,-2)
6e55dbc packages: nvram: add asus,rt-ac{3200,5300} to set_wireless_led_behaviour (+10,-3)
1b107a3 packages: nvram: add set_bcm43602_variables quirk for ASUS RT-AC3200 (+34,-1)
1a810b5 iproute2: add dcb utility (+27,-11)
b1dc273 wifi-scripts: fix ucode mobility_domain default value (+1,-1)
90b8ed7 openssl: update to 3.5.5 (+35,-36)
b0c75ad tcpdump: add PROVIDES=tcpdump to tcpdump-tiny (+1)
dece3bf wifi-scripts: iwinfo.uc: fix null reference in info() (+1,-1)
fd04f92 libpcap: update to 1.10.6 (+14,-364)
b98323c tcpdump: update to 4.99.6 (+16,-16)

27b48d0 qualcommax: ipq50xx: Add support for Zyxel SCR50AXE (+462,-9)
⇒ 1f83ec8 ipq5018: Add BDF for Linksys MX6200 ()
⇒ ed56ad0 qcn6122: Add BDF for Linksys MX6200 ()
⇒ 11715a4 ipq5018: add SCR50AXE BDF's ()

3d167c6 firewall: change synflood_protect option name (+1,-1)
31f65ff odhcpd: update to 25.12 Git HEAD (2026-01-19) (+3,-3)
⇒ 3867846 dhcpv6: set static defines for DHCPv6 option header size (+26,-24)
⇒ e282a3c dhcpv6-ia: switch case refactor in dhcpv6_handle_ias() (+139,-64)
⇒ 90929d9 netlink: clean up sockets, close files (+39,-14)
⇒ 2e5068b dhcpv4: de-escalate error logging to debug (+1,-1)
5c72cd4 odhcp6c: update to 25.12 Git HEAD (2026-01-25) (+8,-6)
⇒ abf6677 dhcpv6: replace hash_ifname() with MD5 implementation (+16,-5)
⇒ ee2949e dhcpv6: add config for strict RFC7550 (+72,-19)

890a1d3 kernel: reorder configuration options (+21,-20)

53a525f kernel: bump 6.12 to 6.12.67 (+65,-67)
12374d8 Revert "kernel: bump 6.12 to 6.12.67" (+67,-65)

630c404 bcm53xx: add support for ASUS RT-AC3200 and ASUS RT-AC5300 (+16)

947bcc9 d1: enable usbgadget feature (+3,-2)
79d8e14 d1: enable overlay support (+3)
3cb84dc d1: refresh kernel config (+68,-41)

1d87d1f ipq40xx: fix image pipeline for MR6350 (+1,-1)

ebf9f13 lantiq: AVM Fritz 736x: fix PCIe reset GPIO (+1)

4d444da mediatek: fix label mac for Keenetic KN-(3711/3811/3911) (+5,-5)
fdf2a1b mediatek: drop spi cal for Keenetic KN-(3711/3811/3911) (-21)
593b7d9 mediatek: simplify nvmem mac for Keenetic KN-(3811/3911) (+4,-12)
a71aef6 mediatek: enable wan led for Keenetic KN-(3711/3811) (+4)

687ece1 microchipsw: lan969x: use network driver as a module (+3,-8)
b638904 microchipsw: update DTS with the latest pending upstream (+22,-23)
fc40e08 microchipsw: lan969x: include ip-bridge and dcb tools (+2,-1)

890a1d3 kernel: reorder configuration options (+21,-20)

63060b0 mvebu: cortex-a53: fix Methode eDPU migration to upstream DTS (+34,-13)

27b48d0 qualcommax: ipq50xx: Add support for Zyxel SCR50AXE (+462,-9)
⇒ 1f83ec8 ipq5018: Add BDF for Linksys MX6200 ()
⇒ ed56ad0 qcn6122: Add BDF for Linksys MX6200 ()
⇒ 11715a4 ipq5018: add SCR50AXE BDF's ()
735e949 qualcommax: ipq50xx: enable ipq-cmn-pll driver compilation (+222,-5)
404b81e qualcommax: ipq50xx: correct assigned cmn pll clock rate (+81)
9e99b5b qualcommax: ipq50xx: Correct USB DWC3 wrapper interrupts (+104,-1)

890a1d3 kernel: reorder configuration options (+21,-20)

ee7acbc rockchip: configure WAN port LED of Radxa E20C (+7,-2)
dcc6ffb rockchip: correct MAC address for Radxa E20C (+52)
f618048 rockchip: add HINLINK H28K support (+398,-1)
4303066 rockchip: fix set default serial_{addr,port} in boot script (+15,-13)
53a525f kernel: bump 6.12 to 6.12.67 (+65,-67)
12374d8 Revert "kernel: bump 6.12 to 6.12.67" (+67,-65)

890a1d3 kernel: reorder configuration options (+21,-20)

a8e32d2 mac80211: update to version 6.18.7 (+39,-122)

7c732c8 mt76: mt7996: fix crash when using mesh (+25)

#20751

Description: 2025-11-06 mt76 update crashes upon 802.11s mesh usage
Link: https://github.com/openwrt/openwrt/issues/20751
Commits:
7c732c8 mt76: mt7996: fix crash when using mesh (+25)

#21562

Description: AVM FRITZ!Box 7360 V2 - Wireless not working on 25.12-rc2
Link: https://github.com/openwrt/openwrt/issues/21562
Commits:
ebf9f13 lantiq: AVM Fritz 736x: fix PCIe reset GPIO (+1)

#21651

Description: wifi-scripts: iwinfo fails with rtl8192du (iwinfo.uc: Reference error: left-hand side expression is null)
Link: https://github.com/openwrt/openwrt/issues/21651
Commits:
dece3bf wifi-scripts: iwinfo.uc: fix null reference in info() (+1,-1)

#21731

Description: wifi-scripts: ucode generated mobility_domain does not match script
Link: https://github.com/openwrt/openwrt/issues/21731
Commits:
b1dc273 wifi-scripts: fix ucode mobility_domain default value (+1,-1)

#21737

Description: ds-lite: incoming `ipip6` packets do not get decapsulated
Link: https://github.com/openwrt/openwrt/issues/21737
Commits:
12374d8 Revert "kernel: bump 6.12 to 6.12.67" (+67,-65)

CVE-2025-11187

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11187
Commits:
90b8ed7 openssl: update to 3.5.5 (+35,-36)

CVE-2025-11961

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11961
Commits:
fd04f92 libpcap: update to 1.10.6 (+14,-364)

CVE-2025-11964

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11964
Commits:
fd04f92 libpcap: update to 1.10.6 (+14,-364)

OpenWrt 25.12.0-rc4 Changelog

Build System / Buildroot (1 change)

Kernel (6 changes)

Packages / Boot Loaders (2 changes)

Packages / Common (12 changes)

Packages / Firmware (1 change)

Packages / OpenWrt network userland (3 changes)

Target / airoha (1 change)

Target / bcm27xx (2 changes)

Target / bcm53xx (1 change)

Target / d1 (3 changes)

Target / ipq40xx (1 change)

Target / lantiq (1 change)

Target / mediatek (4 changes)

Target / microchipsw (3 changes)

Target / mpc85xx (1 change)

Target / mvebu (1 change)

Target / qualcommax (4 changes)

Target / realtek (1 change)

Target / rockchip (6 changes)

Target / sunxi (1 change)

Wireless / Common (1 change)

Wireless / MT76 (1 change)

Addressed bugs

#20751

#21562

#21651

#21731

#21737

Security fixes

CVE-2025-11187

CVE-2025-11961

CVE-2025-11964

CVE-2025-15467

CVE-2025-15468

CVE-2025-15469

CVE-2025-66199

CVE-2025-68160

CVE-2025-69418

CVE-2025-69419

CVE-2025-69420

CVE-2025-69421

CVE-2026-22795

CVE-2026-22796