CVE-2025-21703 | Linux Kernel up to 6.6.77/6.12.13/6.13.2/6.14-rc1 netem qdisc_tree_reduce_backlog use after free

Posted by Angelo Barbosa | Feb 18, 2025 | CVE

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.6.77/6.12.13/6.13.2/6.14-rc1. Affected is the function qdisc_tree_reduce_backlog of the component netem. The manipulation leads to use after free.

This vulnerability is traded as CVE-2025-21703. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-21703 | Linux Kernel up to 6.6.77/6.12.13/6.13.2/6.14-rc1 netem qdisc_tree_reduce_backlog use after free

Related Posts

CVE-2024-29758 | Kienso co-marquage service-public.fr Plugin up to 0.5.72 on WordPress cross site scripting

CVE-2024-23622 | IBM Merge Healthcare eFilm Workstation up to 4.2 stack-based overflow

CVE-2024-27379 | Samsung Exynos 1330 slsi_nan_subscribe_get_nl_params heap-based overflow

IBM MQ Appliance improper protection of alternate path (XFDB-269535)