CVE-2026-22987

Published: Jan 23, 2026

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net/sched: act_api: avoid dereferencing ERR_PTR in tcf_idrinfo_destroy syzbot reported a crash in tc_act_in_hw() during netns teardown where tcf_idrinfo_destroy() passed an ERR_PTR(-EBUSY) value as a tc_action pointer, leading to an invalid dereference. Guard against ERR_PTR entries when iterating the action IDR so teardown does not call tc_act_in_hw() on an error pointer.

Vendor	Product	Versions
Linux	Linux	affected `84a7d6797e6a03705e6b48c613fa424662049d87 - < 67550a1130b647bb0d093c9c0a810c69aa6a30a8` affected `84a7d6797e6a03705e6b48c613fa424662049d87 - < adb25a46dc0a43173f5ea5f5f58fc8ba28970c7c`
Linux	Linux	affected `6.17` unaffected `0 - < 6.17` unaffected `6.18.6 - <= 6.18.` unaffected `6.19 - <= `

References

https://git.kernel.org/stable/c/67550a1130b647bb0d093c9c0a810c69aa6a30a8

https://git.kernel.org/stable/c/adb25a46dc0a43173f5ea5f5f58fc8ba28970c7c

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-22987

Description

Affected Products

References