TCP Fast Open Vulnerability in Linux Kernel
CVE-2025-39955

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 9 October 2025

What is CVE-2025-39955?

A vulnerability has been identified in the Linux kernel's TCP Fast Open feature. In specific scenarios, the TCP state management can incorrectly preserve the fast open request socket in certain conditions. When a socket transitions through states, specifically from TCP_ESTABLISHED to TCP_CLOSE, the vulnerability arises if the fastopen_rsk is not cleared, potentially leading to retransmission timer warnings and disrupting the expected packet flow. This could lead to network inefficiencies and compromised TCP connections, emphasizing the need for timely updates and patches to mitigate such risks.

Affected Version(s)

Linux 8336886f786fdacbc19b719c1f7ea91eb70706d4 < 7ec092a91ff351dcde89c23e795b73a328274db6

Linux 8336886f786fdacbc19b719c1f7ea91eb70706d4

Linux 8336886f786fdacbc19b719c1f7ea91eb70706d4 < 33a4fdf0b4a25f8ce65380c3b0136b407ca57609

References

https://git.kernel.org/stable/c/7ec092a91ff351dcde89c23e7...

https://git.kernel.org/stable/c/a4378dedd6e07e62f2fccb17d...

https://git.kernel.org/stable/c/33a4fdf0b4a25f8ce65380c3b...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 9, 2025
Vulnerability Reserved
Apr 16, 2025

JSON