CVE-2025-38127: 
Linux Kernel vulnerability analysis and mitigation

CVE-2025-38127 is a vulnerability discovered in the Linux kernel, specifically affecting the ice driver's Tx scheduler error handling in XDP callback functionality. The vulnerability was disclosed on July 3, 2025. The issue occurs when an XDP program is loaded and the XDP callback adds new Tx queues, where the callback must update the Tx scheduler with the new queue number (NVD, CVE).

The vulnerability stems from incomplete rollback of changes made by the XDP callback during Tx scheduler failure. When a failure occurs, the XDP callback should fail and roll back all changes previously made for XDP preparation. However, the implementation contained a bug where not all changes were properly rolled back, leading to system crashes. The issue manifests as a general protection fault with a non-canonical address, affecting systems running Linux kernel versions up to 6.14.0-net-next (Debian Tracker).

The vulnerability can cause system crashes and potential denial of service conditions. According to Rapid7's assessment, the vulnerability has been assigned a CVSS score of 7.0, indicating a high severity level (Rapid7).

The fix involves performing the missing unmapping of XDP queues from q_vectors and setting the XDP rings pointer back to NULL after all queues are released. Additionally, an immediate exit from the XDP callback has been implemented in case of ring preparation failure. The fix is available in Linux kernel version 6.12.35-1 and later (Debian Tracker).