Linux Kernel Traffic Control HTB Queue Management Vulnerability in OcteonTX2-PF

Vulnerability

A vulnerability in the Linux kernel's traffic control (TC) handling for the OcteonTX2-PF platform has been addressed. The issue arose in the Hierarchical Token Bucket (HTB) queuing discipline, where active traffic on a leaf node was not properly managed before reassigning its send queue to the parent node. This oversight could disrupt traffic flow. Additionally, during system reboots, the interface would receive callbacks to delete HTB queues. In the case of the TC_HTB_LEAF_DEL_LAST callback, the send queue was reassigned to the parent, but the logic incorrectly tried to update the queue count, leading to warnings about queue registration after device unregistration.

Impact

The vulnerability could cause improper management of network queues, potentially leading to traffic control issues and degraded network performance.

Added: Jul 10, 2025, 9:50 AM

Updated: Jul 10, 2025, 9:50 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Traffic Control HTB Queue Management Vulnerability in OcteonTX2-PF

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating