CVE-2025-38127

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version

Description: A vulnerability in the Linux kernel has been resolved, related to the ice driver's Tx scheduler error handling in the XDP callback. When the XDP program is loaded, it adds new Tx queues, and the callback must update the Tx scheduler with the new queue number. However, in the event of a Tx scheduler failure, the XDP callback should fail and roll back any changes previously made for XDP preparation. The previous implementation had a bug where not all changes made by the XDP callback were rolled back, causing a crash.

Recommendations: For Linux kernel versions prior to the fixed version, perform the missing unmapping of XDP queues from q vectors and set the XDP rings pointer back to NULL after all those queues are released. Also, add an immediate exit from the XDP callback in case of ring preparation failure.