Main Vulnerability Database SB2025081831

SB2025081831 - Improper locking in Linux kernel wangxun libwx driver

Published: August 18, 2025

Security Bulletin ID SB2025081831

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper locking (CVE-ID: CVE-2025-38532)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the wx_alloc_rx_buffers() and wx_clean_rx_ring() functions in drivers/net/ethernet/wangxun/libwx/wx_lib.c, within the wx_configure_rx_ring() function in drivers/net/ethernet/wangxun/libwx/wx_hw.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/10e27b2a6ebeda49e9c2897a699d3ce1ded565ee
https://git.kernel.org/stable/c/d510116c80b37efb100ce8d5ee326214b0157293
https://git.kernel.org/stable/c/d992ed7e1b687ad7df0763d3e015a5358646210b
https://git.kernel.org/stable/c/ee527d3fba4dae1d619d2d0438624002c8e99e24