{"id":"CVE-2025-38253","summary":"HID: wacom: fix crash in wacom_aes_battery_handler()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nHID: wacom: fix crash in wacom_aes_battery_handler()\n\nCommit fd2a9b29dc9c (\"HID: wacom: Remove AES power_supply after extended\ninactivity\") introduced wacom_aes_battery_handler() which is scheduled\nas a delayed work (aes_battery_work).\n\nIn wacom_remove(), aes_battery_work is not canceled. Consequently, if\nthe device is removed while aes_battery_work is still pending, then hard\ncrashes or \"Oops: general protection fault...\" are experienced when\nwacom_aes_battery_handler() is finally called. E.g., this happens with\nbuilt-in USB devices after resume from hibernate when aes_battery_work\nwas still pending at the time of hibernation.\n\nSo, take care to cancel aes_battery_work in wacom_remove().","modified":"2026-04-02T12:47:53.838725Z","published":"2025-07-09T10:42:32.059Z","related":["SUSE-SU-2025:21074-1","SUSE-SU-2025:21139-1","SUSE-SU-2025:21179-1","openSUSE-SU-2025:20081-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38253.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/57a3d82200dbeccd002244b96acad570eeeb731f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a4f182ffa30c52ad1c8e12edfb8049ee748c0f1b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f3054152c12e2eed1e72704aff47b0ea58229584"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38253.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-38253"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"fd2a9b29dc9c4c35def91d5d1c5b470843539de6"},{"fixed":"a4f182ffa30c52ad1c8e12edfb8049ee748c0f1b"},{"fixed":"57a3d82200dbeccd002244b96acad570eeeb731f"},{"fixed":"f3054152c12e2eed1e72704aff47b0ea58229584"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38253.json"}}],"schema_version":"1.7.5"}