Denial of Service in Linux Kernel Due to Generic PHY LED Registration
CVE-2025-38537

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 August 2025

What is CVE-2025-38537?

A significant vulnerability affecting the Linux kernel has been identified regarding LED registration for generic PHYs. When a generic PHY does not have an associated driver, it may trigger a deadlock when probing or removing the genphy driver. This occurs because LEDs associated with a non-generic driver are incorrectly registered or unregistered, leading to a situation where kernel threads are unable to proceed, ultimately causing a denial of service. This issue emphasizes the importance of ensuring that generic PHYs do not involve unnecessary LED registrations, as they do not inherently support such features.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 01e5b728e9e43ae444e0369695a5f72209906464

Linux 01e5b728e9e43ae444e0369695a5f72209906464

Linux 01e5b728e9e43ae444e0369695a5f72209906464 < 75e1b2079ef0653a2f7aa69be515d86b7faf1908

References

https://git.kernel.org/stable/c/ec158d05eaa91b2809cab65f8...
https://git.kernel.org/stable/c/fd6493533af9e5d73d0d42ff2...
https://git.kernel.org/stable/c/75e1b2079ef0653a2f7aa69be...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.