Linux Kernel Vulnerability in macb Device Handling
CVE-2025-39805

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 September 2025

What is CVE-2025-39805?

A vulnerability in the Linux kernel's macb driver has been identified that arises from improper handling during the removal of macb devices. Specifically, the driver executes the phy_exit() function before calling unregister_netdev() when detaching the device. This sequence results in a warning issued by kernfs indicating a failure to properly remove directory entries, as the PHY is being exited while the netdev remains registered. To address this issue, the correct procedure must involve unregistering the netdev prior to shutting down the PHY, ensuring proper cleanup and maintenance of network device integrity.

Affected Version(s)

Linux 8b73fa3ae02b2401960de41b0454c0321377b203

Linux 8b73fa3ae02b2401960de41b0454c0321377b203 < 775fe690fd4a3337ad2115de2adb41b227d4dae7

Linux 8b73fa3ae02b2401960de41b0454c0321377b203 < 01b9128c5db1b470575d07b05b67ffa3cb02ebf1

References

https://git.kernel.org/stable/c/ff0d3bad32108b57265e5b48f...

https://git.kernel.org/stable/c/775fe690fd4a3337ad2115de2...

https://git.kernel.org/stable/c/01b9128c5db1b470575d07b05...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Apr 16, 2025