Acknowledged
Created: Aug 17, 2025
Updated: Aug 19, 2025
Found In Version: 10.24.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]net: libwx: fix the using of Rx buffer DMA[EOL][EOL]The wx_rx_buffer structure contained two DMA address fields: 'dma' and[EOL]'page_dma'. However, only 'page_dma' was actually initialized and used[EOL]to program the Rx descriptor. But 'dma' was uninitialized and used in[EOL]some paths.[EOL][EOL]This could lead to undefined behavior, including DMA errors or[EOL]use-after-free, if the uninitialized 'dma' was used. Althrough such[EOL]error has not yet occurred, it is worth fixing in the code.
CREATE(Triage):(User=pbi-cn) [CVE-2025-38533 (https://nvd.nist.gov/vuln/detail/CVE-2025-38533)
