CVE-2025-38468

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s networking scheduler (net/sched) related to handling empty red-black trees within the htb lookup leaf function. Specifically, a BUG ON condition can be triggered when htb lookup leaf encounters an empty rbtree. This occurs due to a sequence of events involving packet queuing and dequeueing within the HTB (Hierarchical Token Bucket) queuing discipline, potentially leading to a system crash. The issue arises from the interaction between htb dequeue, netem dequeue, blackhole enqueue, and htb lookup leaf. The root cause is that blackhole enqueue can return a value other than NET XMIT SUCCESS, leading to a chain of function calls that ultimately trigger the BUG ON in htb lookup leaf when the rbtree is empty.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.