vulnerability

Debian: CVE-2025-38474: linux, linux-6.1 -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:N/I:N/A:C)	Jul 31, 2025	Jul 31, 2025	Dec 23, 2025

Severity

CVSS

(AV:L/AC:L/Au:S/C:N/I:N/A:C)

Published

Jul 31, 2025

Added

Jul 31, 2025

Modified

Dec 23, 2025

Description

In the Linux kernel, the following vulnerability has been resolved:

usb: net: sierra: check for no status endpoint

The driver checks for having three endpoints and
having bulk in and out endpoints, but not that
the third endpoint is interrupt input.
Rectify the omission.

Solutions

debian-upgrade-linuxdebian-upgrade-linux-6-1no-fix-debian-deb-package

References

CVE-2025-38474
https://attackerkb.com/topics/CVE-2025-38474
DEBIAN-DSA-5973-1
DEBIAN-DSA-5975-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today