CVE-2025-39908

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to hardware timestamping (hwtstamp) within network device operations. Specifically, the issue involves failing to properly acquire the operations lock in lower paths during hwtstamp callbacks. This inconsistency can lead to potential problems when invoking ndo (net device operations) functions. Kernel logs indicate warnings related to netdev update features and functions like mlx5 hwtstamp set and mlx5e hwtstamp set. The issue is associated with a patch converting legacy ioctl calls to ndo hwtstamp get/set, and is not present in the mainline kernel.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.