Linux Kernel Vulnerability Affecting Macsec Feature Synchronization
CVE-2025-39874

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 23 September 2025

What is CVE-2025-39874?

A vulnerability exists in the Linux kernel concerning the synchronization of features between upper and lower network devices when using macsec. Specifically, the issue emerges when lower features do not align with upper features during the use of ETHTOOL_SFEATURES, leading to potential deadlock situations. This flaw is exacerbated by the elimination of lock/unlock operations when features are already synced, which could hinder proper updates to lower device configurations during macsec link operations. The implications could affect network reliability and functionality, highlighting the importance of appropriate feature management in kernel network drivers.

Affected Version(s)

Linux 7e4d784f5810bba76c4593791028e13cce4af547

Linux 7e4d784f5810bba76c4593791028e13cce4af547 < 0f82c3ba66c6b2e3cde0f255156a753b108ee9dc

Linux 6.15

References

https://git.kernel.org/stable/c/d7624629ccf47135c65fef070...

https://git.kernel.org/stable/c/0f82c3ba66c6b2e3cde0f2551...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 23, 2025
Vulnerability Reserved
Apr 16, 2025

JSON