CVE-2025-21971
Published: Apr 1, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net_sched: Prevent creation of classes with TC_H_ROOT The function qdisc_tree_reduce_backlog() uses TC_H_ROOT as a termination condition when traversing up the qdisc tree to update parent backlog counters. However, if a class is created with classid TC_H_ROOT, the traversal terminates prematurely at this class instead of reaching the actual root qdisc, causing parent statistics to be incorrectly maintained. In case of DRR, this could lead to a crash as reported by Mingi Cho. Prevent the creation of any Qdisc class with classid TC_H_ROOT (0xFFFFFFFF) across all qdisc types, as suggested by Jamal.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 066a3b5b2346febf9a655b444567b7138e3bb939 - < e05d9938b1b0ac40b6054cc5fa0ccbd9afd5ed4caffected 066a3b5b2346febf9a655b444567b7138e3bb939 - < 7a82fe67a9f4d7123d8e5ba8f0f0806c28695006affected 066a3b5b2346febf9a655b444567b7138e3bb939 - < 003d92c91cdb5a64b25a9a74cb8543aac9a8bb48affected 066a3b5b2346febf9a655b444567b7138e3bb939 - < e5ee00607bbfc97ef1526ea95b6b2458ac9e7cb7affected 066a3b5b2346febf9a655b444567b7138e3bb939 - < 78533c4a29ac3aeddce4b481770beaaa4f3bfb67+3 more versions |
Linux | Linux | affected 2.6.25unaffected 0 - < 2.6.25unaffected 5.4.292 - <= 5.4.*unaffected 5.10.236 - <= 5.10.*unaffected 5.15.180 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now