[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-DEBIAN-CVE-2025-38392":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":16,"duplicates":17,"related":18,"reserved_at":9,"published_at":19,"modified_at":20,"state":9,"summary":21,"references_raw":23,"kevs":30,"epss":9,"epss_history":31,"metrics":32,"affected":39},"DEBIAN-CVE-2025-38392","In the Linux kernel, the following vulnerability has been resolved:  idpf: convert control queue mutex to a spinlock  With VIRTCHNL2_CAP_MACFILTER enabled, the following warning is generated on module load:  [  324.701677] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:578 [  324.701684] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 1582, name: NetworkManager [  324.701689] preempt_count: 201, expected: 0 [  324.701693] RCU nest depth: 0, expected: 0 [  324.701697] 2 locks held by NetworkManager/1582: [  324.701702]  #0: ffffffff9f7be770 (rtnl_mutex){....}-{3:3}, at: rtnl_newlink+0x791/0x21e0 [  324.701730]  #1: ff1100216c380368 (_xmit_ETHER){....}-{2:2}, at: __dev_open+0x3f0/0x870 [  324.701749] Preemption disabled at: [  324.701752] [\u003Cffffffff9cd23b9d>] __dev_open+0x3dd/0x870 [  324.701765] CPU: 30 UID: 0 PID: 1582 Comm: NetworkManager Not tainted 6.15.0-rc5+ #2 PREEMPT(voluntary) [  324.701771] Hardware name: Intel Corporation M50FCP2SBSTD/M50FCP2SBSTD, BIOS SE5C741.86B.01.01.0001.2211140926 11/14/2022 [  324.701774] Call Trace: [  324.701777]  \u003CTASK> [  324.701779]  dump_stack_lvl+0x5d/0x80 [  324.701788]  ? __dev_open+0x3dd/0x870 [  324.701793]  __might_resched.cold+0x1ef/0x23d \u003C..> [  324.701818]  __mutex_lock+0x113/0x1b80 \u003C..> [  324.701917]  idpf_ctlq_clean_sq+0xad/0x4b0 [idpf] [  324.701935]  ? kasan_save_track+0x14/0x30 [  324.701941]  idpf_mb_clean+0x143/0x380 [idpf] \u003C..> [  324.701991]  idpf_send_mb_msg+0x111/0x720 [idpf] [  324.702009]  idpf_vc_xn_exec+0x4cc/0x990 [idpf] [  324.702021]  ? rcu_is_watching+0x12/0xc0 [  324.702035]  idpf_add_del_mac_filters+0x3ed/0xb50 [idpf] \u003C..> [  324.702122]  __hw_addr_sync_dev+0x1cf/0x300 [  324.702126]  ? find_held_lock+0x32/0x90 [  324.702134]  idpf_set_rx_mode+0x317/0x390 [idpf] [  324.702152]  __dev_open+0x3f8/0x870 [  324.702159]  ? __pfx___dev_open+0x10/0x10 [  324.702174]  __dev_change_flags+0x443/0x650 \u003C..> [  324.702208]  netif_change_flags+0x80/0x160 [  324.702218]  do_setlink.isra.0+0x16a0/0x3960 \u003C..> [  324.702349]  rtnl_newlink+0x12fd/0x21e0  The sequence is as follows: \trtnl_newlink()-> \t__dev_change_flags()-> \t__dev_open()-> \tdev_set_rx_mode() - >  # disables BH and grabs \"dev->addr_list_lock\" \tidpf_set_rx_mode() ->  # proceed only if VIRTCHNL2_CAP_MACFILTER is ON \t__dev_uc_sync() -> \tidpf_add_mac_filter -> \tidpf_add_del_mac_filters -> \tidpf_send_mb_msg() -> \tidpf_mb_clean() -> \tidpf_ctlq_clean_sq()   # mutex_lock(cq_lock)  Fix by converting cq_lock to a spinlock. All operations under the new lock are safe except freeing the DMA memory, which may use vunmap(). Fix by requesting a contiguous physical memory for the DMA mapping.",null,[],[],[],[14],{"_key":15},"CVE-2025-38392",[],[],[],"2025-07-25T13:15:28.617Z","2026-04-28T20:29:57.451597Z",{"cisa_kev":22,"cisa_ransomware":22,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[24],{"url":25,"sources":26,"tags":28},"https://security-tracker.debian.org/tracker/CVE-2025-38392",[27],"osv_debian",[29],"Advisory",[],[],[33],{"source":27,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":34,"cvss_v4_0":9},{"baseScore":35,"baseSeverity":9,"vectorString":36,"impactScore":37,"exploitabilityScore":38},5.5,"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",6,4.6,[40],{"ecosystem":41,"name":42,"vendor":43,"product":42,"cpe_part":9,"purl_type":44,"purl_namespace":43,"purl_name":42,"source":9,"versions":45},"Debian","linux","debian","deb",[46,52],{"version":47,"is_range":48,"range_type":49,"version_start":9,"version_start_type":9,"version_end":50,"version_end_type":51,"fixed_in":9},"lt6_12_37_1",true,"ecosystem","6.12.37-1","excluding",{"version":47,"is_range":48,"range_type":49,"version_start":9,"version_start_type":9,"version_end":50,"version_end_type":51,"fixed_in":9}]