CVE-2025-38617
published 2025-08-22CVE-2025-38617: In the Linux kernel, the following vulnerability has been resolved: net/packet: fix a race in packet_set_ring() and packet_notifier() When packet_set_ring()…
medium4.7CVSS 3.1
AVLACHPRLUINSUCNINAH
In the Linux kernel, the following vulnerability has been resolved:
net/packet: fix a race in packet_set_ring() and packet_notifier()
When packet_set_ring() releases po->bind_lock, another thread can
run packet_notifier() and process an NETDEV_UP event.
This race and the fix are both similar to that of commit 15fe076edea7
("net/packet: fix a race in packet_bind() and packet_notifier()").
There too the packet_notifier NETDEV_UP event managed to run while a
po->bind_lock critical section had to be temporarily released. And
the fix was similarly to temporarily set po->num to zero to keep
the socket unhooked until the lock is retaken.
The po->bind_lock in packet_set_ring and packet_notifier precede the
introduction of git history.
Affected
43 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 6.1.148-1 (bookworm) | linux 6.1.148-1 (bookworm) |
| debian | linux-6.1 | < linux 6.1.148-1 (bookworm) | linux 6.1.148-1 (bookworm) |
| chrome_chrome | — | — | |
| linux | linux | — | — |
| linux | linux | >= ce06b03e60fc19c680d1bf873e779bf11c2fc518 < ee642b1962caa9aa231c01abbd58bc453ae6b66e | ee642b1962caa9aa231c01abbd58bc453ae6b66e |
| linux | linux | >= ce06b03e60fc19c680d1bf873e779bf11c2fc518 < 42cfd7898eeed290c9fb73f732af1f7d6b0a703e | 42cfd7898eeed290c9fb73f732af1f7d6b0a703e |
| linux | linux | >= ce06b03e60fc19c680d1bf873e779bf11c2fc518 < 1b4c03f8892d955385c202009af7485364731bb9 | 1b4c03f8892d955385c202009af7485364731bb9 |
| linux | linux | >= ce06b03e60fc19c680d1bf873e779bf11c2fc518 < 654386baef228c2992dbf604c819e4c7c35fc71b | 654386baef228c2992dbf604c819e4c7c35fc71b |
| linux | linux | >= ce06b03e60fc19c680d1bf873e779bf11c2fc518 < 75fe6db23705a1d55160081f7b37db9665b1880b | 75fe6db23705a1d55160081f7b37db9665b1880b |
| linux | linux | >= ce06b03e60fc19c680d1bf873e779bf11c2fc518 < d0c7cdc15fdf8c4f91aca1928e52295d175b6ec6 | d0c7cdc15fdf8c4f91aca1928e52295d175b6ec6 |
| linux | linux | >= ce06b03e60fc19c680d1bf873e779bf11c2fc518 < ceccbfc6de720ad633519a226715989cfb065af1 | ceccbfc6de720ad633519a226715989cfb065af1 |
| linux | linux | >= ce06b03e60fc19c680d1bf873e779bf11c2fc518 < 42156f93d123436f2a27c468f18c966b7e5db796 | 42156f93d123436f2a27c468f18c966b7e5db796 |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | — | — |
| linux | linux_kernel | >= 0 < 5.10.244-1 | 5.10.244-1 |
| linux | linux_kernel | >= 0 < 6.1.148-1 | 6.1.148-1 |
| linux | linux_kernel | >= 0 < 6.12.43-1 | 6.12.43-1 |
| linux | linux_kernel | >= 0 < 6.16.3-1 | 6.16.3-1 |
| linux | linux_kernel | >= 0 < 5.15.0-157.167 | 5.15.0-157.167 |
| linux | linux_kernel | >= 0 < 6.8.0-85.85 | 6.8.0-85.85 |
| linux | linux_kernel | >= 0 < 4.4.0-273.307 | 4.4.0-273.307 |
| linux | linux_kernel | >= 0 < 4.15.0-242.254 | 4.15.0-242.254 |
| linux | linux_kernel | >= 0 < 5.4.0-222.242 | 5.4.0-222.242 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH