CVE-2025-38569
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38569
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38569.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-38569
- Downstream
- Published
- 2025-08-19T17:15:33Z
- Modified
- 2025-09-06T13:01:50Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
benet: fix BUG when creating VFs
benet crashes as soon as SRIOV VFs are created:
kernel BUG at mm/vmalloc.c:3457! Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI CPU: 4 UID: 0 PID: 7408 Comm: test.sh Kdump: loaded Not tainted 6.16.0+ #1 PREEMPT(voluntary) [...] RIP: 0010:vunmap+0x5f/0x70 [...] Call Trace: <TASK> _iommudmafree+0xe8/0x1c0 becmdsetmaclist+0x3fe/0x640 [be2net] becmdsetmac+0xaf/0x110 [be2net] bevfethaddrconfig+0x19f/0x330 [be2net] bevfsetup+0x4f7/0x990 [be2net] bepcisriovconfigure+0x3a1/0x470 [be2net] sriovnumvfsstore+0x20b/0x380 kernfsfopwriteiter+0x354/0x530 vfswrite+0x9b9/0xf60 ksyswrite+0xf3/0x1d0 dosyscall64+0x8c/0x3d0
becmdsetmaclist() calls dmafreecoherent() under a spinlockbh. Fix it by freeing only after the lock has been released.
- References
-
- https://git.kernel.org/stable/c/0ddfe8b127ef1149fddccb79db6e6eaba7738e7d
- https://git.kernel.org/stable/c/3697e37e012bbd2bb5a5b467689811ba097b2eff
- https://git.kernel.org/stable/c/46d44a23a3723a89deeb65b13cddb17f8d9f2700
- https://git.kernel.org/stable/c/5a40f8af2ba1b9bdf46e2db10e8c9710538fbc63
- https://git.kernel.org/stable/c/975e73b9102d844a3dc3f091ad631c56145c8b4c
- https://git.kernel.org/stable/c/c377ba2be9430d165a98e4b782902ed630bc7546
- https://git.kernel.org/stable/c/d5dc09ee5d74277bc47193fe28ce8703e229331b
- https://git.kernel.org/stable/c/f4e4e0c4bc4d799d6fa39055acdbc3af066cd13e
- https://git.kernel.org/stable/c/f80b34ebc579216407b128e9d155bfcae875c30f