CVE-2025-38725
published 2025-09-04CVE-2025-38725: In the Linux kernel, the following vulnerability has been resolved: net: usb: asix_devices: add phy_mask for ax88772 mdio bus Without setting phy_mask for…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
In the Linux kernel, the following vulnerability has been resolved:
net: usb: asix_devices: add phy_mask for ax88772 mdio bus
Without setting phy_mask for ax88772 mdio bus, current driver may create
at most 32 mdio phy devices with phy address range from 0x00 ~ 0x1f.
DLink DUB-E100 H/W Ver B1 is such a device. However, only one main phy
device will bind to net phy driver. This is creating issue during system
suspend/resume since phy_polling_mode() in phy_state_machine() will
directly deference member of phydev->drv for non-main phy devices. Then
NULL pointer dereference issue will occur. Due to only external phy or
internal phy is necessary, add phy_mask for ax88772 mdio bus to workarnoud
the issue.
Affected
38 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| debian | linux-6.1 | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| linux | linux | — | — |
| linux | linux | >= e532a096be0e5e570b383e71d4560e7f04384e0f < 75947d3200de98a9ded9ad8972e02f1a177097fe | 75947d3200de98a9ded9ad8972e02f1a177097fe |
| linux | linux | >= e532a096be0e5e570b383e71d4560e7f04384e0f < 59ed6fbdb1bc03316e09493ffde7066f031c7524 | 59ed6fbdb1bc03316e09493ffde7066f031c7524 |
| linux | linux | >= e532a096be0e5e570b383e71d4560e7f04384e0f < ccef5ee4adf56472aa26bdd1f821a6d0cd06089a | ccef5ee4adf56472aa26bdd1f821a6d0cd06089a |
| linux | linux | >= e532a096be0e5e570b383e71d4560e7f04384e0f < ee2cd40b0bb46056949a2319084a729d95389386 | ee2cd40b0bb46056949a2319084a729d95389386 |
| linux | linux | >= e532a096be0e5e570b383e71d4560e7f04384e0f < a754ab53993b1585132e871c5d811167ad3c52ff | a754ab53993b1585132e871c5d811167ad3c52ff |
| linux | linux | >= e532a096be0e5e570b383e71d4560e7f04384e0f < ad1f8313aeec0115f9978bd2d002ef4a8d96c773 | ad1f8313aeec0115f9978bd2d002ef4a8d96c773 |
| linux | linux | >= e532a096be0e5e570b383e71d4560e7f04384e0f < 4faff70959d51078f9ee8372f8cff0d7045e4114 | 4faff70959d51078f9ee8372f8cff0d7045e4114 |
| linux | linux_kernel | — | — |
| linux | linux_kernel | >= 0 < 6.1.153-1 | 6.1.153-1 |
| linux | linux_kernel | >= 0 < 6.12.43-1 | 6.12.43-1 |
| linux | linux_kernel | >= 0 < 6.16.3-1 | 6.16.3-1 |
| linux | linux_kernel | >= 0 < 5.15.0-163.173 | 5.15.0-163.173 |
| linux | linux_kernel | >= 0 < 6.8.0-100.100 | 6.8.0-100.100 |
| linux | linux_kernel | >= 5.14 < 5.15.190 | 5.15.190 |
| linux | linux_kernel | >= 5.16 < 6.1.149 | 6.1.149 |
| linux | linux_kernel | >= 6.13 < 6.15.11 | 6.15.11 |
| linux | linux_kernel | >= 6.16 < 6.16.2 | 6.16.2 |
| linux | linux_kernel | >= 6.2 < 6.6.103 | 6.6.103 |
| linux | linux_kernel | >= 6.7 < 6.12.43 | 6.12.43 |
| msrc | azl3_kernel_6.6.96.2-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_kernel_6.6.96.2-2_on_azure_linux_3.0 | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv5.5MEDIUM