SB2026050795 - Division by zero in Linux kernel sched
Published: May 7, 2026
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 vulnerability.
1) Division by zero (CVE-ID: CVE-2026-43238)
CWE-ID: CWE-369 - Divide By Zero
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to a divide-by-zero error in tcf_skbedit_hash() when processing skbedit hash-based tx queue selection with a queue mapping range covering all possible u16 queue IDs. A local user can configure a crafted queue mapping range to cause a denial of service.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/015cebdfcb97b5347fb7f598ea712a281cb35840
- https://git.kernel.org/stable/c/3c2b95b26860bd6f8e2310d31ea1200d3f8f173e
- https://git.kernel.org/stable/c/4ece5eb4836f8ff03b9004dc2430a7169f282851
- https://git.kernel.org/stable/c/59809fda4da7730cfe84a948033f47eb45db073d
- https://git.kernel.org/stable/c/9c735a7d98c982a786b0db71eb6566ee00aaa04f
- https://git.kernel.org/stable/c/be054cc66f739a9ba615dba9012a07fab8e7dd6f