Linux Kernel Vulnerability in Complex Rule Error Handling by Mellanox Technologies
CVE-2025-39768

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 11 September 2025

What is CVE-2025-39768?

This vulnerability in the Linux kernel affects the handling of complex rules within Mellanox networking products. Specifically, issues arose when attempting to move rules from matcher to matcher, which could lead to serious disruptions such as soft lock-ups. The patch addresses these problems by introducing a robust error flow that ensures the kernel can continue functioning even when faced with rule transfer failures. Key improvements include aborting the rehash sequence on timeouts, maintaining error codes for clarity, and allowing for continued processing of remaining rules, effectively minimizing the potential for damage in networking environments.

Affected Version(s)

Linux 17e0accac577fd6ea2090934d71a8c6f36702a26 < 37d54bc28d092bc3b314da45d730f00e9d86ec2a

Linux 17e0accac577fd6ea2090934d71a8c6f36702a26 < 4a842b1bf18a32ee0c25dd6dd98728b786a76fe4

Linux 6.16

References

https://git.kernel.org/stable/c/37d54bc28d092bc3b314da45d...

https://git.kernel.org/stable/c/4a842b1bf18a32ee0c25dd6dd...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2025
Vulnerability Reserved
Apr 16, 2025