-

CVE-2025-38148

EPSS 0.04%
Published 03.07.2025 08:35:53
Last modified 09.09.2025 17:15:44
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

net: phy: mscc: Fix memory leak when using one step timestamping

Fix memory leak when running one-step timestamping. When running
one-step sync timestamping, the HW is configured to insert the TX time
into the frame, so there is no reason to keep the skb anymore. As in
this case the HW will never generate an interrupt to say that the frame
was timestamped, then the frame will never released.
Fix this by freeing the frame in case of one-step timestamping.

Affected products Warnungen 0 Metrics 1 CWE 0 References 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 24b24295464f25fb771d36ed558c7cd942119361

Version 7d272e63e0979d38a6256108adbe462d621c26c5

Status affected

Version < db2a12ddd3a31f668137ff6a4befc1343c79cbc4

Version 7d272e63e0979d38a6256108adbe462d621c26c5

Status affected

Version < 0b40aeaf83ca04d4c9801e235b7533400c8b5f17

Version 7d272e63e0979d38a6256108adbe462d621c26c5

Status affected

Version < 66abe22017522dd56b820e41ca3a5b131a637001

Version 7d272e63e0979d38a6256108adbe462d621c26c5

Status affected

Version < cdbabd316c5a4a9b0fda6aafe491e2db17fbb95d

Version 7d272e63e0979d38a6256108adbe462d621c26c5

Status affected

Version < 846992645b25ec4253167e3f931e4597eb84af56

Version 7d272e63e0979d38a6256108adbe462d621c26c5

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version 5.9

Status affected

Version < 5.9

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.192

Status unaffected

Version <= 6.1.*

Version 6.1.142

Status unaffected

Version <= 6.6.*

Version 6.6.94

Status unaffected

Version <= 6.12.*

Version 6.12.34

Status unaffected

Version <= 6.15.*

Version 6.15.3

Status unaffected

Version <= *

Version 6.16

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.097

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://git.kernel.org/stable/c/db2a12ddd3a31f668137ff6a4befc1343c79cbc4

https://git.kernel.org/stable/c/0b40aeaf83ca04d4c9801e235b7533400c8b5f17

https://git.kernel.org/stable/c/66abe22017522dd56b820e41ca3a5b131a637001

https://git.kernel.org/stable/c/cdbabd316c5a4a9b0fda6aafe491e2db17fbb95d

https://git.kernel.org/stable/c/846992645b25ec4253167e3f931e4597eb84af56

https://git.kernel.org/stable/c/24b24295464f25fb771d36ed558c7cd942119361

https://nvd.nist.gov/vuln/detail/CVE-2025-38148

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38148

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38148

EUVD