Primary

Context

Linux Kernel Reference Leak Vulnerability in Net/Sched Act_Ct Component

Vulnerability

A reference leak vulnerability has been identified in the Linux kernel's net/sched component, specifically within the act_ct functionality. This issue arises when switching zones or network namespaces without clearing the connection tracking (ct) data in between, leading to a leak of the old ct entry reference. The problem occurs because the function tcf_ct_skb_nfct_cached() returns false, allowing tcf_ct_flow_table_lookup() to overwrite the ct entry. The vulnerability affects several different versions and/or ranges of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to a reference leak, causing improper management of connection tracking data when switching network zones or namespaces.

Remediation

The vulnerability has been fixed in the official Linux Git repository. Users should upgrade to the latest version.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Reference Leak Vulnerability in Net/Sched Act_Ct Component

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating