PT-2025-27697 · Linux+6 · Linux Kernel+6

Published

2025-07-03

·

Updated

2026-04-20

·

CVE-2025-38111

CVSS v2.0

7.7

High

VectorAV:A/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)
Description: A potential out-of-bounds read/write access issue has been identified in the Linux kernel. The issue occurs when using tools like 'mdio-tools' to read/write data from/to network interface and its PHY via mdiobus. The problem arises because there is no verification of parameters passed to the ioctl, allowing any mdio address to be accepted. Although the kernel currently supports 32 addresses via the PHY MAX ADDR define, it is possible to pass higher values via ioctl. This could lead to out-of-bounds read/write access in the stats array, even though read/write operations should generally fail in such cases. The issue has been fixed by adding address verification before read/write operations, improving the security of these operations.
Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Out of bounds Read

Weakness Enumeration

CWE-787CWE-125

Related Identifiers

AZL-64550
BDU:2025-10777
CVE-2025-38111
DLA-4327-1
DLA-4328-1
DSA-5973-1
ECHO-7360-B42B-BA4C
MGASA-2025-0218
MGASA-2025-0219
OESA-2026-1275
OESA-2026-1303
OESA-2026-1304
OESA-2026-1305
OPENSUSE-SU-2025:20081-1
SUSE-SU-2025:02853-1
SUSE-SU-2025:02923-1
SUSE-SU-2025:02969-1
SUSE-SU-2025:02996-1
SUSE-SU-2025:02997-1
SUSE-SU-2025:03011-1
SUSE-SU-2025:03023-1
SUSE-SU-2025:03615-1
SUSE-SU-2025:03628-1
SUSE-SU-2025:20577-1
SUSE-SU-2025:20586-1
SUSE-SU-2025:20601-1
SUSE-SU-2025:20602-1
SUSE-SU-2025:21074-1
SUSE-SU-2025:21139-1
SUSE-SU-2025:21179-1
SUSE-SU-2025:3716-1
SUSE-SU-2025:3761-1
SUSE-SU-2025_02853-1
SUSE-SU-2025_02969-1
SUSE-SU-2025_02996-1
SUSE-SU-2025_02997-1
SUSE-SU-2025_03011-1
SUSE-SU-2025_03023-1
SUSE-SU-2026:0487-1
SUSE-SU-2026:0526-1
SUSE-SU-2026:0528-1
SUSE-SU-2026:0535-1
SUSE-SU-2026:0539-1
SUSE-SU-2026:0542-1
SUSE-SU-2026:0543-1
SUSE-SU-2026:0548-1
SUSE-SU-2026:0554-1
SUSE-SU-2026:0560-1
SUSE-SU-2026:0565-1
SUSE-SU-2026:0566-1
SUSE-SU-2026:20455-1
SUSE-SU-2026:20456-1
SUSE-SU-2026:20457-1
SUSE-SU-2026:20458-1
SUSE-SU-2026:20459-1
SUSE-SU-2026:20460-1
SUSE-SU-2026:20461-1
SUSE-SU-2026:20462-1
SUSE-SU-2026:20463-1
SUSE-SU-2026:20464-1
SUSE-SU-2026:20499-1
SUSE-SU-2026:20500-1
SUSE-SU-2026:20501-1
SUSE-SU-2026:20502-1
SUSE-SU-2026:20503-1
SUSE-SU-2026:20511-1
SUSE-SU-2026:20512-1
SUSE-SU-2026:20513-1
SUSE-SU-2026:20514-1
SUSE-SU-2026:20515-1
USN-7769-1
USN-7769-2
USN-7769-3
USN-7770-1
USN-7771-1
USN-7774-1
USN-7774-2
USN-7774-3
USN-7774-4
USN-7774-5
USN-7775-1
USN-7775-2
USN-7775-3
USN-7776-1
USN-7789-1
USN-7789-2
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu