You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
lan743x
About this tag
The lan743x tag covers Linux kernel vulnerabilities and fixes related to the Microchip/Marvell LAN743x Ethernet driver. Recent discussions include CVE-2025-38183, an out-of-bounds write in PTP timestamp handling that can corrupt kernel memory; CVE-2025-37909, a memory leak affecting Azure Linux and other distributions; and CVE-2025-38422, an EEPROM-related issue also attested in Azure Linux. These threads focus on security patches, driver stability, and Microsoft's attestation process for Azure Linux images. The tag is relevant for system administrators, IT professionals, and developers managing Linux hosts with LAN743x hardware, particularly in cloud or enterprise environments where time synchronization and memory safety are critical.
The Linux kernel received a surgical but important fix for an out‑of‑bounds write in the Microchip/Marvell lan743x Ethernet driver, tracked as CVE‑2025‑38183, that corrects a mismatch between the number of supported PTP event channels and the size of the internal timestamp array — a programming...
The Linux kernel vulnerability tracked as CVE‑2025‑37909 is a targeted memory‑leak fix in the Microchip LAN743x Ethernet driver (lan743x) that matters chiefly because Microsoft’s MSRC advisory explicitly attests that Azure Linux includes the implicated upstream code, while leaving open whether...
Microsoft’s public advisory for CVE-2025-38422 confirms that Azure Linux images include the upstream Linux kernel code that required a fix in the lan743x Ethernet driver, but that product-level attestation is not an automatic guarantee that no other Microsoft-distributed artifacts contain the...