SB20250620203 - Resource management error in Linux kernel mediatek mt76 driver
Published: June 20, 2025
Security Bulletin ID
SB20250620203
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Resource management error (CVE-ID: CVE-2025-38043)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the mt76_dma_cleanup() function in drivers/net/wireless/mediatek/mt76/dma.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/2e62c803feec1ef5847d8fa47dd0de039abfa378
- https://git.kernel.org/stable/c/3a3efeef64364c2a028cf0d03d68c831813a97fd
- https://git.kernel.org/stable/c/97bab02f0b64ba6bcdf6a8fae561db07f509aee9
- https://git.kernel.org/stable/c/c6aa1d6bd6ccff4ecdf064d288817657ec8532f0
- https://git.kernel.org/stable/c/cc0aac7ca17e0ea3ca84b552fc79f3e86fd07f53
- https://git.kernel.org/stable/c/e2de76c34a8a925efe80fccae4810427bc144ed0