Back to overview

CVE-2026-53079

Description
In the Linux kernel, the following vulnerability has been resolved: net_sched: fix skb memory leak in deferred qdisc drops When the network stack cleans up the deferred list via qdisc_run_end(), it operates on the root qdisc. If the root qdisc do not implement the TCQ_F_DEQUEUE_DROPS flag the packets queue to free are never freed and gets stranded on the child's local to_free list. Fix this by making qdisc_dequeue_drop() aware of the root qdisc. It fetches the root qdisc and check for the TCQ_F_DEQUEUE_DROPS flag. If the flag is present, the packet is appended directly to the root's to_free list. Otherwise, drop it directly as it was done before the optimization was implemented.

Metadata

CVE ID
CVE-2026-53079
State
PUBLISHED
Assigner
Linux
Reserved
2026-06-09 07:44 UTC
Published
2026-06-24 16:30 UTC
Last updated
2026-06-24 16:30 UTC
Vendor / Product
Linux / Linux
Sources
cve.org  ·  NVD

Severity & Metrics

No CVSS data available.

Affected products (2)
VendorProductPlatformVersions
Linux Linux a6efc273ab8245722eee2150fa12cf75781dc410 < bf26ad92ffda7884825d67b46bd5efe615c3babf, a6efc273ab8245722eee2150fa12cf75781dc410 < a6bd339dbb3514bce690fdcf252e788dfab4ee76
Linux Linux 6.19, 0 < 6.19, 7.0.10 ≤ 7.0.*, 7.1 ≤ *
References (2)
Back to overview