CVE-2025-21882

Summary

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5: Fix vport QoS cleanup on error

When enabling vport QoS fails, the scheduling node was never freed, causing a leak.

Add the missing free and reset the vport scheduling node pointer to NULL.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxbe034baba83e2a80a0b2c0f24c08547b6eedc79a < fead368502bce0e10bea7c0d2895b2fa0c6c10aaaffected
LinuxLinuxbe034baba83e2a80a0b2c0f24c08547b6eedc79a < 7f3528f7d2f98b70e19a6bb7b130fc82c079ac54affected
LinuxLinux6.13affected
LinuxLinux0 < 6.13unaffected
LinuxLinux6.13.6 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

References