CVE-2026-23449

Name of the Vulnerable Software and Affected Versions Linux kernel versions 7.0.0-rc3 through 7.0.0-rc3

Description The Linux kernel contains a flaw in the TEQL (Traffic Equation Queue Length) scheduler. Specifically, a double-free issue exists in the teql master xmit function when a TEQL device has a lockless Qdisc as its root. This can lead to crashes, as demonstrated by a KASAN (Kernel Address Sanitizer) report indicating a double-free in skb release data. The issue arises from failing to call qdisc reset with the seq lock to avoid racing with the datapath. The crash can occur during the destruction of the TEQL device, potentially triggered by operations like tc get qdisc or qdisc graft. The skb release data function is involved in the memory management of network packets (skbs), and the double-free corrupts memory, leading to system instability.

Recommendations Update to a newer kernel version that contains a fix for this vulnerability.