CVE-2025-38736

🗓️ 05 Sep 2025 17:20:36Reported by LinuxType

Kernel fix masks physical address to five bits on Management Data Input/Output bus for asix device.

Reporter	Title	Published	Views	Family All 105
AstraLinux	Astra Linux - уязвимость в linux-6.1	20 May 202605:53	–	astralinux
Circl	CVE-2025-38736	8 Jan 202616:03	–	circl
CNNVD	Linux kernel 安全漏洞	5 Sep 202500:00	–	cnnvd
Cvelist	CVE-2025-38736 net: usb: asix_devices: Fix PHY address mask in MDIO bus initialization	5 Sep 202517:20	–	cvelist
Debian	[SECURITY] [DLA 4328-1] linux-6.1 security update	13 Oct 202509:16	–	debian
Debian	[SECURITY] [DSA 6008-1] linux security update	22 Sep 202521:10	–	debian
Debian	[SECURITY] [DSA 6009-1] linux security update	22 Sep 202521:10	–	debian
Debian CVE	CVE-2025-38736	5 Sep 202517:20	–	debiancve
Tenable Nessus	Debian dla-4328 : linux-config-6.1 - security update	13 Oct 202500:00	–	nessus
Tenable Nessus	Debian dsa-6008 : ata-modules-6.12.31-armmp-di - security update	22 Sep 202500:00	–	nessus

NVD

Vulners

CNA

Node

linux linux_kernelRange6.15.11–6.16

linux linux_kernelRange6.16.2–6.16.4

linux linux_kernelMatch6.12.43

linux linux_kernelMatch6.17rc2

Node

debian debian_linuxMatch11.0

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/usb/asix_devices.c"
    ],
    "versions": [
      {
        "version": "75947d3200de98a9ded9ad8972e02f1a177097fe",
        "lessThan": "fcb4ce9f729c1d08e53abf9d449340e24c3edee6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "59ed6fbdb1bc03316e09493ffde7066f031c7524",
        "lessThan": "8f141f2a4f2ef8ca865d5921574c3d6535e00a49",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ccef5ee4adf56472aa26bdd1f821a6d0cd06089a",
        "lessThan": "748da80831221ae24b4bc8d7ffb22acd5712a341",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ee2cd40b0bb46056949a2319084a729d95389386",
        "lessThan": "22042ffedd8c2c6db08ccdd6d4273068eddd3c5c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ad1f8313aeec0115f9978bd2d002ef4a8d96c773",
        "lessThan": "523eab02fce458fa6d3c51de5bb055800986953e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4faff70959d51078f9ee8372f8cff0d7045e4114",
        "lessThan": "24ef2f53c07f273bad99173e27ee88d44d135b1c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a754ab53993b1585132e871c5d811167ad3c52ff",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "6.15.11",
        "lessThan": "6.16",
        "status": "affected",
        "versionType": "semver"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/usb/asix_devices.c"
    ],
    "versions": [
      {
        "version": "6.12.43",
        "lessThan": "6.12.44",
        "status": "affected",
        "versionType": "semver"
      },
      {
        "version": "6.16.2",
        "lessThan": "6.16.4",
        "status": "affected",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/fcb4ce9f729c1d08e53abf9d449340e24c3edee6
git	www.git.kernel.org/stable/c/22042ffedd8c2c6db08ccdd6d4273068eddd3c5c
git	www.git.kernel.org/stable/c/523eab02fce458fa6d3c51de5bb055800986953e
git	www.git.kernel.org/stable/c/748da80831221ae24b4bc8d7ffb22acd5712a341
git	www.git.kernel.org/stable/c/24ef2f53c07f273bad99173e27ee88d44d135b1c
git	www.git.kernel.org/stable/c/8f141f2a4f2ef8ca865d5921574c3d6535e00a49
lists	www.lists.debian.org/debian-lts-announce/2025/10/msg00008.html
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-032379.html

23 May 2026 16:00Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.17.1

EPSS0.00026

CWE-125