CVE-2026-22987

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s networking scheduler related to traffic control and action API handling. Specifically, the issue involves a potential invalid memory dereference within the tcf idrinfo destroy() function during network namespace teardown. The tc act in hw() function could be called with an error pointer (ERR PTR(-EBUSY)), leading to a crash. The fix prevents calling tc act in hw() on error pointers by guarding against ERR PTR entries when iterating the action IDR.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.