Duplication Vulnerability in Linux Kernel Networking Module
CVE-2025-38553

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 19 August 2025

What is CVE-2025-38553?

A vulnerability has been identified in the Linux kernel's networking component where the logic for preventing the duplication of netems within a queuing discipline (qdisc) tree can fail. When a netem is improperly allowed to exist alongside other netems, it may lead to system instability, including soft lockups and out-of-memory (OOM) loops during packet processing. To mitigate this risk, recent patches have enforced stricter conditions to prevent duplicating netems from cohabitating in the same qdisc tree, addressing potential denial-of-service (DoS) scenarios.

Affected Version(s)

Linux 0afb51e72855971dba83b3c6b70c547c2d1161fd < 325f5ec67cc0a77f2d0d453445b9857f1cd06c76

Linux 0afb51e72855971dba83b3c6b70c547c2d1161fd < 103c4e27ec9f5fe53022e46e976abf52c7221baf

Linux 0afb51e72855971dba83b3c6b70c547c2d1161fd < 795cb393e38977aa991e70a9363da0ee734b2114

References

https://git.kernel.org/stable/c/325f5ec67cc0a77f2d0d45344...

https://git.kernel.org/stable/c/103c4e27ec9f5fe53022e46e9...

https://git.kernel.org/stable/c/795cb393e38977aa991e70a93...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 19, 2025
Vulnerability Reserved
Apr 16, 2025