CVE-2025-38148

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38148
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38148.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38148
Downstream
Related
Published
2025-07-03T08:35:53.544Z
Modified
2026-03-20T12:42:41.479665Z
Summary
net: phy: mscc: Fix memory leak when using one step timestamping
Details

In the Linux kernel, the following vulnerability has been resolved:

net: phy: mscc: Fix memory leak when using one step timestamping

Fix memory leak when running one-step timestamping. When running one-step sync timestamping, the HW is configured to insert the TX time into the frame, so there is no reason to keep the skb anymore. As in this case the HW will never generate an interrupt to say that the frame was timestamped, then the frame will never released. Fix this by freeing the frame in case of one-step timestamping.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38148.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
7d272e63e0979d38a6256108adbe462d621c26c5
Fixed
24b24295464f25fb771d36ed558c7cd942119361
Fixed
db2a12ddd3a31f668137ff6a4befc1343c79cbc4
Fixed
0b40aeaf83ca04d4c9801e235b7533400c8b5f17
Fixed
66abe22017522dd56b820e41ca3a5b131a637001
Fixed
cdbabd316c5a4a9b0fda6aafe491e2db17fbb95d
Fixed
846992645b25ec4253167e3f931e4597eb84af56

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38148.json"