Vulnerability DatabaseCVE-2025-39872

CVE-2025-39872:
Linux Debian vulnerability analysis and mitigation

Overview

A vulnerability in the Linux kernel was identified and assigned CVE-2025-39872. The issue relates to the HSR (High-availability Seamless Redundancy) module, specifically in the hsrgetport_ndev function which requires proper RCU (Read-Copy-Update) lock handling. The vulnerability was disclosed on September 23, 2025 (NVD).

Technical details

The vulnerability stems from improper lock handling in the HSR module of the Linux kernel. Specifically, the hsrgetportndev function calls hsrforeachport without holding the required RCU lock. Additionally, the port device reference needs to be held before returning to prevent Use-after-Free (UaF) conditions in the caller function (Debian Tracker).

Impact

The vulnerability could potentially lead to Use-after-Free (UaF) conditions in the Linux kernel's HSR module, which could affect system stability and security (NVD).

Mitigation and workarounds

The vulnerability has been fixed in various Linux distributions. Debian has addressed this in multiple releases: version 6.16.8-1 for sid, while versions for bullseye, bookworm, and trixie have been marked as not affected due to the vulnerable code not being present (Debian Tracker).

Additional resources

Source: This report was generated using AI

Related Linux Debian vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-59343	HIGH	8.7	JavaScript	tar-fs	No	Yes	Sep 24, 2025
CVE-2025-60020	MEDIUM	6.4	Linux Debian	nncp	No	No	Sep 24, 2025
CVE-2025-8869	MEDIUM	5.9	Python	rhel8/flatpak-runtime	No	Yes	Sep 24, 2025
CVE-2025-39890	N/A	N/A	Linux Debian	linux	No	Yes	Sep 24, 2025
CVE-2025-39889	N/A	N/A	Linux Kernel	kernel-rt-64k-modules-partner	No	Yes	Sep 24, 2025