CVE-2026-43238
Divide-by-Zero in Linux Kernel net/sched act_skbedit
Publication date: 2026-05-06
Last updated on: 2026-05-06
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | to U16_MAX (exc) |
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Linux kernel's network scheduler component, specifically in the act_skbedit module. It involves a divide-by-zero error in the function tcf_skbedit_hash().
The issue arises because the calculation of a range size (mapping_mod) for queue mappings can overflow a 16-bit unsigned integer (u16). When the range covers all possible 16-bit queue IDs, the computed size wraps around to zero instead of representing 65536. This zero value is then used as a divisor, causing a divide-by-zero error and potentially crashing the kernel.
The fix involves computing the range size in a wider data type and rejecting ranges larger than the maximum 16-bit value to prevent the zero divisor and avoid the crash.
How can this vulnerability impact me? :
This vulnerability can cause the Linux kernel to crash due to a divide-by-zero error in the network scheduler. Such a crash can lead to a denial of service (DoS) condition, disrupting network traffic handling and potentially affecting system stability and availability.
What immediate steps should I take to mitigate this vulnerability?
The vulnerability in the Linux kernel related to a divide-by-zero error in tcf_skbedit_hash() has been fixed by computing the mapping_mod in a wider type and rejecting ranges larger than U16_MAX to prevent the crash.
To mitigate this vulnerability, you should update your Linux kernel to a version that includes the fix for this issue, specifically the commit identified as 38a6f0865796.