Main Vulnerability Database SB2026020560

SB2026020560 - Input validation error in Linux kernel sched

Published: February 5, 2026

Security Bulletin ID SB2026020560

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Input validation error (CVE-ID: CVE-2026-23105)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the qfq_rm_from_agg() function in net/sched/sch_qfq.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/77f1afd0bb4d5da95236f6114e6d0dfcde187ff6
https://git.kernel.org/stable/c/93b8635974fb050c43d07e35e5edfe6e685ca28a
https://git.kernel.org/stable/c/abd9fc26ea577561a5ef6241a1b058755ffdad0c
https://git.kernel.org/stable/c/d837fbee92453fbb829f950c8e7cf76207d73f33