CVE-2025-21882

Published: Mar 27, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix vport QoS cleanup on error When enabling vport QoS fails, the scheduling node was never freed, causing a leak. Add the missing free and reset the vport scheduling node pointer to NULL.

Vendor	Product	Versions
Linux	Linux	affected `be034baba83e2a80a0b2c0f24c08547b6eedc79a - < fead368502bce0e10bea7c0d2895b2fa0c6c10aa` affected `be034baba83e2a80a0b2c0f24c08547b6eedc79a - < 7f3528f7d2f98b70e19a6bb7b130fc82c079ac54`
Linux	Linux	affected `6.13` unaffected `0 - < 6.13` unaffected `6.13.6 - <= 6.13.` unaffected `6.14 - <= `

References

https://git.kernel.org/stable/c/fead368502bce0e10bea7c0d2895b2fa0c6c10aa

https://git.kernel.org/stable/c/7f3528f7d2f98b70e19a6bb7b130fc82c079ac54

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-21882

Description

Affected Products

References