CVE-2025-38253

EPSS 0.03%
Veröffentlicht 09.07.2025 10:42:32
Zuletzt bearbeitet 10.07.2025 13:17:30
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

HID: wacom: fix crash in wacom_aes_battery_handler()

Commit fd2a9b29dc9c ("HID: wacom: Remove AES power_supply after extended
inactivity") introduced wacom_aes_battery_handler() which is scheduled
as a delayed work (aes_battery_work).

In wacom_remove(), aes_battery_work is not canceled. Consequently, if
the device is removed while aes_battery_work is still pending, then hard
crashes or "Oops: general protection fault..." are experienced when
wacom_aes_battery_handler() is finally called. E.g., this happens with
built-in USB devices after resume from hibernate when aes_battery_work
was still pending at the time of hibernation.

So, take care to cancel aes_battery_work in wacom_remove().

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < a4f182ffa30c52ad1c8e12edfb8049ee748c0f1b

Version fd2a9b29dc9c4c35def91d5d1c5b470843539de6

Status affected

Version < 57a3d82200dbeccd002244b96acad570eeeb731f

Version fd2a9b29dc9c4c35def91d5d1c5b470843539de6

Status affected

Version < f3054152c12e2eed1e72704aff47b0ea58229584

Version fd2a9b29dc9c4c35def91d5d1c5b470843539de6

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.8

Status affected

Version < 6.8

Version 0

Status unaffected

Version <= 6.12.*

Version 6.12.36

Status unaffected

Version <= 6.15.*

Version 6.15.5

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.052

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/a4f182ffa30c52ad1c8e12edfb8049ee748c0f1b

https://git.kernel.org/stable/c/57a3d82200dbeccd002244b96acad570eeeb731f

https://git.kernel.org/stable/c/f3054152c12e2eed1e72704aff47b0ea58229584

https://nvd.nist.gov/vuln/detail/CVE-2025-38253

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38253

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38253

EUVD