Packet Dropping Issue in Linux Kernel's htcb Queuing Mechanism
CVE-2025-39766

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 11 September 2025

What is CVE-2025-39766?

A vulnerability in the Linux Kernel allows packet dropping when specific conditions trigger an incorrect return value from the cake_enqueue function. This occurs under scenarios where the memory limit is set very low, leading to a buffer limit that inadvertently drops packets. The issue arises when the htb_activate function is called with an empty child queuing discipline, ultimately affecting network performance and flow management. Proper adjustments ensure that NET_XMIT_CN is returned to signal congestion when packets are dropped in these critical handling scenarios.

Affected Version(s)

Linux 046f6fd5daefac7f5abdafb436b30f63bc7c602b < 7689ab22de36f8db19095f6bdf11f28cfde92f5c

Linux 046f6fd5daefac7f5abdafb436b30f63bc7c602b

Linux 046f6fd5daefac7f5abdafb436b30f63bc7c602b < 0dacfc5372e314d1219f03e64dde3ab495a5a25e

References

https://git.kernel.org/stable/c/7689ab22de36f8db19095f6bd...

https://git.kernel.org/stable/c/de04ddd2980b48caa8d7e24a7...

https://git.kernel.org/stable/c/0dacfc5372e314d1219f03e64...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2025
Vulnerability Reserved
Apr 16, 2025