Acknowledged
Created: Jul 3, 2025
Updated: Jul 8, 2025
Found In Version: 10.22.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]net_sched: sch_sfq: fix a potential crash on gso_skb handling[EOL][EOL]SFQ has an assumption of always being able to queue at least one packet.[EOL][EOL]However, after the blamed commit, sch->q.len can be inflated by packets[EOL]in sch->gso_skb, and an enqueue() on an empty SFQ qdisc can be followed[EOL]by an immediate drop.[EOL][EOL]Fix sfq_drop() to properly clear q->tail in this situation.[EOL][EOL][EOL]ip netns add lb[EOL]ip link add dev to-lb type veth peer name in-lb netns lb[EOL]ethtool -K to-lb tso off # force qdisc to requeue gso_skb[EOL]ip netns exec lb ethtool -K in-lb gro on # enable NAPI[EOL]ip link set dev to-lb up[EOL]ip -netns lb link set dev in-lb up[EOL]ip addr add dev to-lb 192.168.20.1/24[EOL]ip -netns lb addr add dev in-lb 192.168.20.2/24[EOL]tc qdisc replace dev to-lb root sfq limit 100[EOL][EOL]ip netns exec lb netserver[EOL][EOL]netperf -H 192.168.20.2 -l 100 &[EOL]netperf -H 192.168.20.2 -l 100 &[EOL]netperf -H 192.168.20.2 -l 100 &[EOL]netperf -H 192.168.20.2 -l 100 &
CREATE(Triage):(User=lchen-cn) [CVE-2025-38115 (https://nvd.nist.gov/vuln/detail/CVE-2025-38115)
