CVE-2025-39770
📋 TL;DR
A Linux kernel vulnerability where IPv6 packets with extension headers incorrectly request checksum offload on devices that only support NETIF_F_IPV6_CSUM, which explicitly doesn't support packets with extension headers. This causes network throughput collapse with warning messages in kernel logs. Affects Linux systems using IPv6 with extension headers (like GREoIPv6 tunnels) on compatible network hardware.
💻 Affected Systems
- Linux kernel
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Complete network throughput collapse for affected IPv6 traffic, causing denial of service for applications using IPv6 with extension headers.
Likely Case
Network performance degradation and kernel warning messages when IPv6 packets with extension headers are processed on affected devices.
If Mitigated
No impact if IPv6 extension headers aren't used or if devices support full IPv6 offload features beyond just NETIF_F_IPV6_CSUM.
🎯 Exploit Status
Exploitation requires ability to send IPv6 packets with extension headers to affected systems. This is a denial of service vulnerability rather than a privilege escalation or code execution flaw.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Patches available in stable kernel branches via provided git commits
Vendor Advisory: https://git.kernel.org/stable/c/041e2f945f82fdbd6fff577b79c33469430297aa
Restart Required: Yes
Instructions:
1. Update Linux kernel to version containing the fix. 2. Check distribution-specific security advisories. 3. Reboot system after kernel update.
🔧 Temporary Workarounds
Disable IPv6 extension headers
allPrevent use of IPv6 extension headers that trigger the vulnerability
# Configure network to avoid IPv6 extension headers
# Disable specific IPv6 tunnel protocols if not needed
Disable checksum offload
LinuxForce software checksum calculation instead of hardware offload
ethtool -K <interface> tx-ipv6-csum-offload off
🧯 If You Can't Patch
- Avoid using IPv6 with extension headers on affected network interfaces
- Use network devices that support full IPv6 offload features beyond just NETIF_F_IPV6_CSUM
🔍 How to Verify
Check if Vulnerable:
Monitor kernel logs for 'skb_warn_bad_offload' warnings when processing IPv6 traffic with extension headersCheck Version:
uname -rVerify Fix Applied:
Check kernel version includes the fix commits and verify no 'skb_warn_bad_offload' warnings appear during IPv6 traffic with extension headers📡 Detection & Monitoring
Log Indicators:
- WARNING: CPU: ... at net/core/dev.c:3535 skb_warn_bad_offload
- kernel messages about bad offload for IPv6 packets
Network Indicators:
- Sudden throughput drops for IPv6 traffic with extension headers
- Increased CPU usage for network processing
SIEM Query:
source="kernel" AND "skb_warn_bad_offload" AND "IPv6"🔗 References
- https://git.kernel.org/stable/c/041e2f945f82fdbd6fff577b79c33469430297aa
- https://git.kernel.org/stable/c/2156d9e9f2e483c8c3906c0ea57ea312c1424235
- https://git.kernel.org/stable/c/794ddbb7b63b6828c75967b9bcd43b086716e7a1
- https://git.kernel.org/stable/c/864e3396976ef41de6cc7bc366276bf4e084fff2
- https://git.kernel.org/stable/c/a0478d7e888028f85fa7785ea838ce0ca09398e2
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
