We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-21971

net_sched: Prevent creation of classes with TC_H_ROOT



Description

In the Linux kernel, the following vulnerability has been resolved: net_sched: Prevent creation of classes with TC_H_ROOT The function qdisc_tree_reduce_backlog() uses TC_H_ROOT as a termination condition when traversing up the qdisc tree to update parent backlog counters. However, if a class is created with classid TC_H_ROOT, the traversal terminates prematurely at this class instead of reaching the actual root qdisc, causing parent statistics to be incorrectly maintained. In case of DRR, this could lead to a crash as reported by Mingi Cho. Prevent the creation of any Qdisc class with classid TC_H_ROOT (0xFFFFFFFF) across all qdisc types, as suggested by Jamal.

Reserved 2024-12-29 | Published 2025-04-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

066a3b5b2346febf9a655b444567b7138e3bb939 before e05d9938b1b0ac40b6054cc5fa0ccbd9afd5ed4c
affected

066a3b5b2346febf9a655b444567b7138e3bb939 before 7a82fe67a9f4d7123d8e5ba8f0f0806c28695006
affected

066a3b5b2346febf9a655b444567b7138e3bb939 before 003d92c91cdb5a64b25a9a74cb8543aac9a8bb48
affected

066a3b5b2346febf9a655b444567b7138e3bb939 before e5ee00607bbfc97ef1526ea95b6b2458ac9e7cb7
affected

066a3b5b2346febf9a655b444567b7138e3bb939 before 78533c4a29ac3aeddce4b481770beaaa4f3bfb67
affected

066a3b5b2346febf9a655b444567b7138e3bb939 before 5c3ca9cb48b51bd72bf76b8b05e24f3cd53db5e7
affected

066a3b5b2346febf9a655b444567b7138e3bb939 before 94edfdfb9505ab608e86599d1d1e38c83816fc1c
affected

066a3b5b2346febf9a655b444567b7138e3bb939 before 0c3057a5a04d07120b3d0ec9c79568fceb9c921e
affected

Default status
affected

2.6.25
affected

Any version before 2.6.25
unaffected

5.4.292
unaffected

5.10.236
unaffected

5.15.180
unaffected

6.1.132
unaffected

6.6.84
unaffected

6.12.20
unaffected

6.13.8
unaffected

6.14
unaffected

References

git.kernel.org/...c/e05d9938b1b0ac40b6054cc5fa0ccbd9afd5ed4c

git.kernel.org/...c/7a82fe67a9f4d7123d8e5ba8f0f0806c28695006

git.kernel.org/...c/003d92c91cdb5a64b25a9a74cb8543aac9a8bb48

git.kernel.org/...c/e5ee00607bbfc97ef1526ea95b6b2458ac9e7cb7

git.kernel.org/...c/78533c4a29ac3aeddce4b481770beaaa4f3bfb67

git.kernel.org/...c/5c3ca9cb48b51bd72bf76b8b05e24f3cd53db5e7

git.kernel.org/...c/94edfdfb9505ab608e86599d1d1e38c83816fc1c

git.kernel.org/...c/0c3057a5a04d07120b3d0ec9c79568fceb9c921e

cve.org (CVE-2025-21971)

nvd.nist.gov (CVE-2025-21971)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-21971

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.