{"uuid": "af9fbb42-cf9f-4248-a075-e198a12d997d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21971", "type": "seen", "source": "https://t.me/cvedetector/21794", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-21971 - \"Linux Kernel net_sched TC_H_ROOT Class Creation Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-21971 \nPublished : April 1, 2025, 4:15 p.m. | 1\u00a0hour, 15\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nnet_sched: Prevent creation of classes with TC_H_ROOT  \n  \nThe function qdisc_tree_reduce_backlog() uses TC_H_ROOT as a termination  \ncondition when traversing up the qdisc tree to update parent backlog  \ncounters. However, if a class is created with classid TC_H_ROOT, the  \ntraversal terminates prematurely at this class instead of reaching the  \nactual root qdisc, causing parent statistics to be incorrectly maintained.  \nIn case of DRR, this could lead to a crash as reported by Mingi Cho.  \n  \nPrevent the creation of any Qdisc class with classid TC_H_ROOT  \n(0xFFFFFFFF) across all qdisc types, as suggested by Jamal. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-01T19:44:41.000000Z"}