Linux Kernel Vulnerability in BNXT Driver from Broadcom
CVE-2025-38186

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 July 2025

What is CVE-2025-38186?

A vulnerability in the BNXT driver for the Linux kernel arises from improper handling during the stopping and starting process of the driver. The driver supports RoCE and utilizes functions like bnxt_ulp_stop() and bnxt_ulp_start(). Recent changes introduced a new function, bnxt_ulp_restart(), allowing a call to bnxt_ulp_restart() after bnxt_ulp_stop() has been executed. This can inadvertently cause the driver’s auxiliary driver's suspend method to be invoked twice, leading to a NULL pointer dereference and potential system crashes. Proper checks are necessary to avoid this situation by ensuring state flags are correctly managed.

Affected Version(s)

Linux 3c163f35bd50314d4e70ed9e83e1d8d83c473325 < 6f2cd309492924b8afd2c62aebff815c1119d124

Linux 3c163f35bd50314d4e70ed9e83e1d8d83c473325

Linux 3c163f35bd50314d4e70ed9e83e1d8d83c473325 < 1e9ac33fa271be0d2480fd732f9642d81542500b

References

https://git.kernel.org/stable/c/6f2cd309492924b8afd2c62ae...

https://git.kernel.org/stable/c/cca4ffd4a5b768752b91f6f75...

https://git.kernel.org/stable/c/1e9ac33fa271be0d2480fd732...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 4, 2025
Vulnerability Reserved
Apr 16, 2025