CVE-2025-38150

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: A vulnerability in the Linux kernel has been resolved. The issue is related to the af packet module, where calling PACKET ADD MEMBERSHIP on an ops-locked device can trigger the NETDEV UNREGISTER notifier, requiring the acquisition of the netdev instance lock. This can lead to a sleeping function being called from an invalid context. The mclist modifications are protected by the RTNL, not the RCU.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.