Security tracker / CVE-2025-38126

CVE-2025-38126

net: stmmac: make sure that ptp_rate is not 0 before configuring timestamping

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in 19d857c9038e ("stmmac: Fix calculations for ptp counters when
 carnil> clock input = 50Mhz."). Vulnerable versions: 4.5.

Bugs

Status

Branch	Status
upstream	released (6.16-rc1) [030ce919e114a111e83b7976ecb3597cefd33f26]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.15-upstream-stable	released (6.15.3) [379cd990dfe752b38fcf46034698a9a150626c7a]
6.12-upstream-stable	released (6.12.34) [bb033c6781ce1b0264c3993b767b4aa9021959c2]
6.6-upstream-stable	released (6.6.94) [b263088ee8ab14563817a8be3519af8e25225793]
6.1-upstream-stable	released (6.1.142) [32af9c289234990752281c805500dfe03c5b2b8f]
5.10-upstream-stable	needed
sid	released (6.12.35-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	released (6.1.147-1)
5.10-bullseye-security	needed