CVE-2025-39872 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: hsr: hold rcu and dev lock for hsr_get_port_ndev hsr_get_port_ndev calls hsr_for_each_port, which need to hold rcu lock. On the other hand, before return the port device, we need to hold the device reference to avoid UaF in the caller function.

PUBLISHED Reserved 2025-04-16 | Published 2025-09-23 | Updated 2025-09-29 | Assigner Linux

Product status

Default status

unaffected

9c10dd8eed74de9e8adeb820939f8745cd566d4a (git) before 68a6729afd3e8e9a2a32538642ce92b96ccf9b1d

affected

9c10dd8eed74de9e8adeb820939f8745cd566d4a (git) before 847748fc66d08a89135a74e29362a66ba4e3ab15

affected

Default status

affected

6.14

affected

Any version before 6.14

unaffected

6.16.8 (semver)

unaffected

6.17 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/68a6729afd3e8e9a2a32538642ce92b96ccf9b1d

git.kernel.org/...c/847748fc66d08a89135a74e29362a66ba4e3ab15

cve.org (CVE-2025-39872)

nvd.nist.gov (CVE-2025-39872)

Download JSON

help @ threatint.eu