Lucene search
+L

304 matches found

CVE
CVE
added 2026/02/04 4:7 p.m.21 views

CVE-2026-23064

CVE-2026-23064 affects the Linux kernel’s net/sched implementation, specifically the act_ife action. The vulnerability is a NULL pointer dereference in tcf_ife_encode()/ife_encode() that could trigger a general protection fault/oops when a NULL is encountered. The provided trace shows the fault p...

5.5CVSS5.1AI score0.00123EPSS
Exploits0References7Affected Software1
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fixed a race condition in qfqaggregate. A race condition can occur when qfqchangeagg is modified called during qfqenqueue while other threads access it concurrently. For example, qfqdumpclass may trigger a NULL...

4.7CVSS6.4AI score0.00115EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: netsched: drr: A double addition was corrected in the class, where netem is a child qdisc. As described in Gerrard’s report 1, there are use cases where a netem child qdisc can make the parent qdisc’s enqueue callback reentrant. ...

7CVSS6.4AI score0.00166EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.1 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: netsched: hfsc: Fixed a potential UAF in hfscdequeue. Similarly to the previous patch, we also need to properly protect hfscdequeue. However, for this issue, we do not have a reliable way to reproduce the problem...

7.8CVSS6.5AI score0.00179EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.7 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: A UAF vulnerability has been fixed in classes where netem is a child qdisc. As described in Gerrard’s report 1, there is a UAF case when an hfsc class has a netem child qdisc. The core issue is that hfsc assumes...

7.8CVSS6.4AI score0.00171EPSS
Exploits0References3
OSV
OSV
added 2026/01/23 4:15 p.m.9 views

UBUNTU-CVE-2026-22987

In the Linux kernel, the following vulnerability has been resolved: net/sched: actapi: avoid dereferencing ERRPTR in tcfidrinfodestroy syzbot reported a crash in tcactinhw during netns teardown where tcfidrinfodestroy passed an ERRPTR-EBUSY value as a tcaction pointer, leading to an invalid...

5.5CVSS5.7AI score0.00103EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/01/23 3:24 p.m.7 views

CVE-2026-22987

In the Linux kernel, the following vulnerability has been resolved: net/sched: actapi: avoid dereferencing ERRPTR in tcfidrinfodestroy syzbot reported a crash in tcactinhw during netns teardown where tcfidrinfodestroy passed an ERRPTR-EBUSY value as a tcaction pointer, leading to an invalid...

5.5CVSS5.4AI score0.00103EPSS
Exploits0
NVD
NVD
added 2026/01/21 7:16 a.m.11 views

CVE-2026-22976

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix NULL deref when deactivating inactive aggregate in qfqreset qfqclass-leafqdisc-q.qlen 0 does not imply that the class itself is active. Two qfqclass objects may point to the same leafqdisc. This happens whe...

5.5CVSS0.00118EPSS
Exploits0References8
OSV
OSV
added 2026/01/20 12:9 p.m.20 views

CLSA-2026-1768895798 kernel: Fix of 7 CVEs

fs/proc: fix uaf in procreaddirde CVE-2025-40271 - fs: fix UAF/GPF bug in nilfsmdtdestroy CVE-2022-2978 - Bluetooth: L2CAP: fix "bad unlock balance" in l2capdisconnectrsp CVE-2023-53297 - net: sched: sfb: fix null pointer access issue when sfbinit fails CVE-2022-50356 - ALSA: usb-audio: Fix size...

7.8CVSS6.9AI score0.00519EPSS
Exploits3References1
Microsoft CVE
Microsoft CVE
added 2026/01/15 9:5 a.m.5 views

net/sched: ets: Remove drr class from the active list if it changes to strict

...

7.1CVSS5.4AI score0.00173EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.10 views

PT-2026-2547

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.18.0-rc7-00105-g7e9f13163c13-dirty Description The Linux kernel contains an issue within the ets scheduling class. When a user changes a drr class to a strict one, the code fails to check if that class is prese...

5.5AI score0.00173EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.3 views

MiracleLinux 8 : kernel-4.18.0-553.75.1.el8_10 (AXSA:2025-10889:70)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10889:70 advisory. kernel: net: usb: smsc75xx: Limit packet length to skb-len CVE-2023-53125 kernel: net/sched: Always pass notifications when child class becomes emp...

7.8CVSS6.9AI score0.0018EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.3 views

PT-2026-6134

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the networking subsystem, specifically in the net/sched component related to the act ife functionality. The issue arises from a potential NULL...

5.5CVSS6.4AI score0.00123EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/12/30 12:15 p.m.4 views

CVE-2023-54251

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: Limit TCATAPRIOATTRSCHEDCYCLETIME to INTMAX. syzkaller found zero division error 0 in divs64rem called from getcycletimeelapsed, where sched-cycletime is the divisor. We have tests in parsetaprioschedule so tha...

5.2AI score0.00168EPSS
Exploits0
Cvelist
Cvelist
added 2025/12/30 12:9 p.m.22 views

CVE-2023-54193 net/sched: cls_api: remove block_cb from driver_list before freeing

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsapi: remove blockcb from driverlist before freeing Error handler of tcfblockbind frees the whole bo-cblist on error. However, by that time the flowblockcb instances are already in the driver list because driver...

0.0018EPSS
Exploits0References7
Microsoft CVE
Microsoft CVE
added 2025/12/18 9:1 a.m.3 views

net/sched: Always pass notifications when child class becomes empty

...

7.8CVSS5.4AI score0.0018EPSS
Exploits0
NVD
NVD
added 2025/12/16 2:15 p.m.9 views

CVE-2025-68200

In the Linux kernel, the following vulnerability has been resolved: bpf: Add bpfprogrundatapointers syzbot found that clsbpfclassify is able to change tcskbcbskb-dropreason triggering a warning in skskbreasondrop. WARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 skskbreasondrop...

0.00179EPSS
Exploits0References6
OSV
OSV
added 2025/12/16 2:15 p.m.5 views

UBUNTU-CVE-2025-68232

In the Linux kernel, the following vulnerability has been resolved: veth: more robust handing of race to avoid txq getting stuck Commit dc82a33297fc "veth: apply qdisc backpressure on full ptrring to reduce TX drops" introduced a race condition that can lead to a permanently stalled TXQ. This was...

5.7AI score0.00161EPSS
Exploits0References12
Microsoft CVE
Microsoft CVE
added 2025/12/08 9:5 a.m.2 views

net: sched: act_connmark: initialize struct tc_ife to fix kernel leak

...

5.5CVSS7AI score0.00171EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/12/08 1:4 a.m.4 views

net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak

...

7AI score0.00189EPSS
Exploits0
Rows per page
Query Builder