ROS-20260114-7323

A vulnerability in the netemdequeue function of the net/sched/schnetem.c module of the net/sched traffic control subsystem of the net/sched kernel of the Linux operating system is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect...

EUVD-2025-26107

Malicious code in bioql PyPI...

CVE-2025-38553

...

CVE-2025-38553

CVE-2025-38553 affects the Linux kernel (net/sched). The issue concerns the duplication logic for netem instances in a qdisc tree, where the existing netem_enqueue handling can misbehave when a netem coexists with others, potentially causing a soft lockup or OOM loop in netem_dequeue. The connect...

CVE-2025-38553

Removed by vendor...

CVE-2025-38553 net/sched: Restrict conditions for adding duplicating netems to qdisc tree

In the Linux kernel, the following vulnerability has been resolved: net/sched: Restrict conditions for adding duplicating netems to qdisc tree netemenqueue's duplication prevention logic breaks when a netem resides in a qdisc tree with other netems - this can lead to a soft lockup and OOM loop in...

SUSE CVE-2025-38468

In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htblookupleaf encounters an empty rbtree htblookupleaf has a BUGON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default 1 tc class add dev lo...

kernel: sch/netem: fix use after free in netem_dequeue

A use-after-free vulnerability was found in the Linux kernel. If netemdequeue enqueues a packet to inner qdisc and that qdisc returns NETXMITSTOLEN, the packet is dropped but qdisctreereducebacklog is not called to update the parent's q.qlen...

PT-2025-33708

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel's net/sched subsystem related to the handling of netem network emulator queuing disciplines qdiscs. The duplication prevention logic within netem...

The vulnerability of the netem_dequeue() function in the Linux kernel’s network scheduling subsystem allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the netemdequeue function in the net/sched/schnetem.c module of the Linux operating system’s network scheduling subsystem is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

SUSE CVE-2024-46800

In the Linux kernel, the following vulnerability has been resolved: sch/netem: fix use after free in netemdequeue If netemdequeue enqueues packet to inner qdisc and that qdisc returns NETXMITSTOLEN. The packet is dropped but qdisctreereducebacklog is not called to update the parent's q.qlen,...

DEBIAN-CVE-2024-46800

In the Linux kernel, the following vulnerability has been resolved: sch/netem: fix use after free in netemdequeue If netemdequeue enqueues packet to inner qdisc and that qdisc returns NETXMITSTOLEN. The packet is dropped but qdisctreereducebacklog is not called to update the parent's q.qlen,...