CVE-2025-38533

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-38533

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38533.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-38533

Downstream

BELL-CVE-2025-38533

DEBIAN-CVE-2025-38533

OESA-2025-2120

OESA-2025-2121

OESA-2025-2122

UBUNTU-CVE-2025-38533

Published

2025-08-16T12:15:28Z

Modified

2025-08-30T18:00:21Z

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

net: libwx: fix the using of Rx buffer DMA

The wxrxbuffer structure contained two DMA address fields: 'dma' and 'pagedma'. However, only 'pagedma' was actually initialized and used to program the Rx descriptor. But 'dma' was uninitialized and used in some paths.

This could lead to undefined behavior, including DMA errors or use-after-free, if the uninitialized 'dma' was used. Althrough such error has not yet occurred, it is worth fixing in the code.

References

Affected packages