CVE-2025-38726

🗓️ 04 Sep 2025 15:33:24Reported by LinuxType

CVE-2025-38726 fixes a NULL pointer access in ftgmac100_phy_disconnect by caching the phy_device before fixed_phy_unregister after netdev->phydev is reset to NULL.

Reporter	Title	Published	Views	Family All 17
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
Circl	CVE-2025-38726	4 Sep 202519:54	–	circl
CNNVD	Linux kernel 安全漏洞	4 Sep 202500:00	–	cnnvd
Cvelist	CVE-2025-38726 net: ftgmac100: fix potential NULL pointer access in ftgmac100_phy_disconnect	4 Sep 202515:33	–	cvelist
Debian CVE	CVE-2025-38726	4 Sep 202515:33	–	debiancve
EUVD	EUVD-2025-26743	3 Oct 202520:07	–	euvd
NVD	CVE-2025-38726	4 Sep 202516:15	–	nvd
OSV	BELL-CVE-2025-38726	5 Sep 202506:01	–	osv
OSV	CVE-2025-38726 net: ftgmac100: fix potential NULL pointer access in ftgmac100_phy_disconnect	4 Sep 202515:33	–	osv
OSV	DEBIAN-CVE-2025-38726	4 Sep 202516:15	–	osv

NVD

Vulners

CNA

Node

linux linux_kernelRange6.12–6.12.43

linux linux_kernelRange6.13–6.15.11

linux linux_kernelRange6.16–6.16.2

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/faraday/ftgmac100.c"
    ],
    "versions": [
      {
        "version": "e24a6c874601efb3de6e535895dd8e4f56fa98f1",
        "lessThan": "ae59ec969c07c73f0610f8bd7e648f01e798d222",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e24a6c874601efb3de6e535895dd8e4f56fa98f1",
        "lessThan": "44bcd397ad9cd1a6b25fabb7f5edbee4fb0cfc2e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e24a6c874601efb3de6e535895dd8e4f56fa98f1",
        "lessThan": "9ad90dd34b4e8e5be1e45a4559f4de0f14e53af2",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e24a6c874601efb3de6e535895dd8e4f56fa98f1",
        "lessThan": "e88fbc30dda1cb7438515303704ceddb3ade4ecd",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/faraday/ftgmac100.c"
    ],
    "versions": [
      {
        "version": "6.12",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.12",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.43",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.15.11",
        "lessThanOrEqual": "6.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16.2",
        "lessThanOrEqual": "6.16.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/44bcd397ad9cd1a6b25fabb7f5edbee4fb0cfc2e
git	www.git.kernel.org/stable/c/e88fbc30dda1cb7438515303704ceddb3ade4ecd
git	www.git.kernel.org/stable/c/ae59ec969c07c73f0610f8bd7e648f01e798d222
git	www.git.kernel.org/stable/c/9ad90dd34b4e8e5be1e45a4559f4de0f14e53af2

11 May 2026 21:33Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.5

EPSS0.00024

CWE-476