What is CVE-2025-39695?

CVE-2025-39695 is a Medium severity Linux kernel vulnerability with a CVSS score of 5.5 out of 10, affecting Linux kernel versions from 6.10 onward and patched in 6.12.44, 6.16.4 and 6.17. CVE-2025-39695 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2025-39695?

CVE-2025-39695 has a CVSS score of 5.5 out of 10, rated Medium severity. The vector string is CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Is there a patch available for CVE-2025-39695?

Yes, CVE-2025-39695 has been patched. Fixed versions include 6.12.44, 6.16.4 and 6.17. If you are running Linux kernel 6.10 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2025-39695 actively exploited?

CVE-2025-39695 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2025-39695

Medium

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Flush delayed SKBs while releasing RXE resources When skb packets are sent out, these skb packets still depends on the rxe resources, for example, QP, sk, when these packets are destroyed. If these rxe resources are released when the skb packets are destroyed, the call traces will appear. To avoid skb packets hang too long time in some network devices, a timestamp is added when these skb packets are created. If these skb packets hang too long time in network devices, these network devices can free these skb packets to release rxe resources.

Package Linux Kernel

Published 2025-09-05

Last modified 2025-11-25

CVSS version 3.1

Patch available

Yes

CVSS 3.1 score

5.5

out of 10

Medium

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

High

Vector string

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected versions

Linux kernel versions 6.10 and later are affected. Fixed in 6.12.44, 6.16.4, 6.17 and their respective stable series.

Affected from

≥ 6.10

Fixed in

✓ 6.12.44 6.12.x ✓ 6.16.4 6.16.x ✓ 6.17

References

The following references provide additional information about CVE-2025-39695 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/3c3e9a9f2972b364e8c2cfbfdeb23c6d6be4f87f
Patch
Kernel patch commit
https://git.kernel.org/stable/c/732d4bd7b78a2752ad43cc39287ef41893c5eee2
Patch
Kernel patch commit
https://git.kernel.org/stable/c/8ead139a8edef485cc36d3a792e2ae5dd538339a
Patch

Details

CVE ID CVE-2025-39695

Severity Medium

CVSS score 5.5 / 10

CVSS version 3.1

Published 2025-09-05

Modified 2025-11-25

KEV No

Patch

Yes

Package linux

Frequently asked questions

What is CVE-2025-39695?

CVE-2025-39695 is a Medium severity Linux kernel vulnerability with a CVSS score of 5.5 out of 10 . It affects Linux kernel versions from 6.10 onward and has been patched in 6.12.44, 6.16.4 and 6.17. CVE-2025-39695 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
What is the CVSS score for CVE-2025-39695?

CVE-2025-39695 has a CVSS score of 5.5 out of 10, rated Medium severity (CVSS 3.1). The vector string is CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.
Is there a patch available for CVE-2025-39695?

Yes — CVE-2025-39695 has been patched. Fixed versions include 6.12.44, 6.16.4 and 6.17. If you are running Linux kernel 6.10 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2025-39695 actively exploited?

No — CVE-2025-39695 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.