CVE-2025-38720 — Vulnetix

CVE-2025-38720 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: net: hibmcge: fix rtnl deadlock issue Currently, the hibmcge netdev acquires the rtnl_lock in pci_error_handlers.reset_prepare() and releases it in pci_error_handlers.reset_done(). However, in the PCI framework: pci_reset_bus - __pci_reset_slot - pci_slot_save_and_disable_locked - pci_dev_save_and_disable - err_handler->reset_prepare(dev); In pci_slot_save_and_disable_locked(): list_for_each_entry(dev, &slot->bus->devices, bus_list) { if (!dev->slot || dev->slot!= slot) continue; pci_dev_save_and_disable(dev); if (dev->subordinate) pci_bus_save_and_disable_locked(dev->subordinate); } This will iterate through all devices under the current bus and execute err_handler->reset_prepare(), causing two devices of the hibmcge driver to sequentially request the rtnl_lock, leading to a deadlock. Since the driver now executes netif_device_detach() before the reset process, it will not concurrently with other netdev APIs, so there is no need to hold the rtnl_lock now. Therefore, this patch removes the rtnl_lock during the reset process and adjusts the position of HBG_NIC_STATE_RESETTING to ensure that multiple resets are not executed concurrently.

EPSS 0.01% · 1.0th percentile

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.01%

1.0th percentile

Affected Products

Vendor	Product	Versions
Linux	Linux	3f5a61f6d504f55ed1a36cce044d5123d508721f, 3f5a61f6d504f55ed1a36cce044d5123d508721f, 3f5a61f6d504f55ed1a36cce044d5123d508721f
linux	linux_kernel	6.14, 6.14, 6.14

Timeline

Jan 21, 1970 Security Advisory
Sep 4, 2025 Coalition ESS Score
Sep 4, 2025 CVE Published
Sep 4, 2025 PoC Published
Sep 4, 2025 PoC Published
Sep 5, 2025 EPSS Score
Sep 5, 2025 Coalition ESS Score
Sep 6, 2025 Coalition ESS Score
Sep 12, 2025 EPSS Score
Sep 19, 2025 EPSS Score
Sep 26, 2025 EPSS Score
Oct 3, 2025 EPSS Score

References

Open in Interactive Console →