Linux Kernel GSO Packet Handling Vulnerability in Net Scheduling

Vulnerability

A vulnerability in the Linux kernel's network scheduling component could lead to a NULL pointer dereference. This issue arises when a queueing discipline's (qdisc) limit is reduced, as only the main socket buffer (skb) queue is adjusted. Packets may remain in the Generic Segmentation Offload (GSO) skb list, creating a potential for a NULL pointer dereference when the scheduler's limit is compared to the queue length. The vulnerability affects several qdiscs, including codel, fq, fq_codel, fq_pie, hhf, and pie.

Impact

Exploitation of this vulnerability could lead to a NULL pointer dereference, causing a kernel crash.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel GSO Packet Handling Vulnerability in Net Scheduling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating