CVE-2025-38576
In the Linux kernel, the following vulnerability has been resolved:
powerpc/eeh: Make EEH driver device hotplug safe
Multiple race conditions existed between the PCIe hotplug driver and the EEH driver, leading to a variety of kernel oopses of the same general nature:
<pcie device unplug> <eeh driver trigger> <hotplug removal trigger> <pcie tree reconfiguration> <eeh recovery next step> <oops in EEH driver bus iteration loop>
A second class of oops is also seen when the underlying bus disappears during device recovery.
Refactor the EEH module to be PCI rescan and remove safe. Also clean up a few minor formatting / readability issues.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 3.14 | 5.10.241 |
| linux / linux_kernel | 5.11 | 5.15.190 |
| linux / linux_kernel | 5.16 | 6.1.148 |
| linux / linux_kernel | 6.2 | 6.6.102 |
| linux / linux_kernel | 6.7 | 6.12.42 |
| linux / linux_kernel | 6.13 | 6.15.10 |
| linux / linux_kernel | 6.16 | 6.16.1 |
| debian / debian_linux | 11.0 | 11.0.x |
- https://git.kernel.org/stable/c/1010b4c012b0d78dfb9d3132b49aa2ef024a07a7
- https://git.kernel.org/stable/c/19d5036e7ad766cf212aebec23b9f1d7924a62bc
- https://git.kernel.org/stable/c/502f08831a9afb72dc98a56ae6504da43e93b250
- https://git.kernel.org/stable/c/59c6d3d81d42bf543c90597b4f38c53d6874c5a1
- https://git.kernel.org/stable/c/a426e8a6ae161f51888585b065db0f8f93ab2e16
- https://git.kernel.org/stable/c/d2c60a8a387e9fcc28447ef36c03f8e49fd052a6
- https://git.kernel.org/stable/c/d42bbd8f30ac38b1ce54715bf08ec3dac18d6b25
- https://git.kernel.org/stable/c/f56e004b781719d8fdf6c9619b15caf2579bc1f2
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime