Lucene search
K

11 matches found

F5 Networks
F5 Networks
added 2026/02/19 3:48 a.m.14 views

K000160078: Linux kernel vulnerability CVE-2025-37797

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use conditi...

7.8CVSS5.2AI score0.00174EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/10/22 12:27 a.m.9 views

kernel: net_sched: hfsc: Fix a UAF vulnerability in class handling

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...

7.8CVSS6.7AI score0.00174EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/06 12:0 a.m.14 views

RockyLinux 8 : kernel-rt (RLSA-2025:16920)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:16920 advisory. kernel: nfsd: don't ignore the return code of svcprocregister CVE-2025-22026 kernel: netsched: hfsc: Fix a UAF vulnerability in class handling...

7.8CVSS7.3AI score0.00178EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/10/04 12:0 a.m.6 views

RockyLinux 9 : kernel (RLSA-2025:11861)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:11861 advisory. kernel: media: uvcvideo: Fix double free in error path CVE-2024-57980 kernel: wifi: iwlwifi: limit printed string from FW file CVE-2025-21905 kernel:...

7.8CVSS7AI score0.00245EPSS
Exploits0References21
SUSE Linux
SUSE Linux
added 2025/08/25 12:45 p.m.13 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_8

This update for kernel-livepatch-MICRO-6-0-RTUpdate8 fixes the following issues: CVE-2025-37752: netsched: schsfq: move the limit validation bsc1245776 CVE-2025-37797: netsched: hfsc: Fix a UAF vulnerability in class handling bsc1245793 CVE-2025-21702: pfifotailenqueue: Drop new packet when...

7.8CVSS9AI score0.00256EPSS
Exploits0References14
OSV
OSV
added 2025/08/25 12:45 p.m.9 views

SUSE-SU-2025:20583-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_8

This update for kernel-livepatch-MICRO-6-0-RTUpdate8 fixes the following issues: - CVE-2025-37752: netsched: schsfq: move the limit validation bsc1245776 - CVE-2025-37797: netsched: hfsc: Fix a UAF vulnerability in class handling bsc1245793 - CVE-2025-21702: pfifotailenqueue: Drop new packet when...

7.8CVSS6.7AI score0.00256EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/04 2:58 p.m.16 views

CVE-2025-37797

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...

5.5CVSS7AI score0.00174EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/05/02 2:16 p.m.8 views

CVE-2025-37797

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...

7.8CVSS5.7AI score0.00174EPSS
Exploits0
Cvelist
Cvelist
added 2025/05/02 2:16 p.m.21 views

CVE-2025-37797 net_sched: hfsc: Fix a UAF vulnerability in class handling

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...

0.00174EPSS
Exploits0References8
OSV
OSV
added 2025/05/02 2:16 p.m.17 views

CVE-2025-37797 net_sched: hfsc: Fix a UAF vulnerability in class handling

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...

7.8CVSS6.2AI score0.00174EPSS
Exploits0References13
CVE
CVE
added 2025/05/02 2:16 p.m.160 views

CVE-2025-37797

CVE-2025-37797 affects the Linux kernel HFSC qdisc. A Use-After-Free can occur in hfsc_change_class() when handling certain child qdiscs (e.g., netem, codel) due to a time-of-check/time-of-use race: hfsc_change_class() may add a class to vttree after qdisc_peek_len() potentially clears the queue....

7.8CVSS6.7AI score0.00174EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder