Network Scheduling Vulnerability in Linux Kernel
CVE-2025-38468

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
28 July 2025

What is CVE-2025-38468?

A vulnerability in the Linux kernel's network scheduling component can lead to erroneous behavior during packet handling. Specifically, when the htb_lookup_leaf function encounters an empty red-black tree, it triggers a BUG_ON condition. This can occur under particular network configurations involving multiple queuing disciplines, potentially resulting in null pointer dereferences that disrupt network operations. Returning NULL instead of triggering a BUG_ON can resolve this issue and prevent cascading failures in packet processing, improving overall system stability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 512bb43eb5422ee69a1be05ea0d89dc074fac9a2

Linux 512bb43eb5422ee69a1be05ea0d89dc074fac9a2 < 5c0506cd1b1a3b145bda2612bbf7fe78d186c355

Linux 512bb43eb5422ee69a1be05ea0d89dc074fac9a2 < 850226aef8d28a00cf966ef26d2f8f2bff344535

References

https://git.kernel.org/stable/c/fed3570e548a6c9f95c5f4c9e...
https://git.kernel.org/stable/c/5c0506cd1b1a3b145bda2612b...
https://git.kernel.org/stable/c/850226aef8d28a00cf966ef26...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.