Lucene search
K

18 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: net/sched: schets: do not remove idle classes from the round-robin list Shuang reported that the following scripts cause issues when executed: 1 tc qdisc add dev ddd0 handle 10: parent 1: ets bands 8 strict 4 priomap 7 7 7 7 7...

5.5CVSS5.9AI score0.00239EPSS
Exploits0References2
OSV
OSV
added 2026/05/09 11:34 a.m.8 views

SUSE-SU-2026:1793-1 Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.60 fixes various security issues The following security issues were fixed: - CVE-2025-38375: virtio-net: ensure the received length does not exceed allocated size bsc1258073. - CVE-2025-39977: futex: Prevent use-after-free during...

7.8CVSS6.9AI score0.96775EPSS
Exploits228References13
OSV
OSV
added 2026/05/05 2:58 p.m.4 views

SUSE-SU-2026:21505-1 Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-36.1 fixes various security issues The following security issues were fixed: - CVE-2025-39977: futex: Prevent use-after-free during requeue-PI bsc1252048. - CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting ...

7.8CVSS7AI score0.96775EPSS
Exploits228References11
OSV
OSV
added 2026/05/05 1:18 p.m.5 views

SUSE-SU-2026:21484-1 Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-35.1 fixes various security issues The following security issues were fixed: - CVE-2025-39977: futex: Prevent use-after-free during requeue-PI bsc1252048. - CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting ...

7.8CVSS7.3AI score0.96775EPSS
Exploits228References11
OSV
OSV
added 2026/05/05 1:10 p.m.5 views

SUSE-SU-2026:21496-1 Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-30.1 fixes various security issues The following security issues were fixed: - CVE-2025-38375: virtio-net: ensure the received length does not exceed allocated size bsc1258073. - CVE-2025-39977: futex: Prevent use-after-free during requeue-PI...

7.8CVSS6.8AI score0.96775EPSS
Exploits228References13
CVE
CVE
added 2026/03/25 10:27 a.m.15 views

CVE-2026-23379

CVE-2026-23379 affects the Linux kernel net/sched ETS offload path. The root cause was an overflow in WRR weight computation (q_sum, q_psum) due to using 32-bit unsigned integers, which could lead to division by zero. The documented fix is to switch q_sum and q_psum to 64-bit integers, preventing...

5.5CVSS5.7AI score0.00119EPSS
Exploits0References8Affected Software1
Redos
Redos
added 2026/03/04 12:0 a.m.3 views

ROS-20260304-73-0003

A vulnerability in the etsqdiscchange function of the netsched component of the Linux kernel is related to simultaneous execution using a shared resource with incorrect synchronization. Exploitation of the vulnerability allows an attacker to cause a denial of service...

7CVSS7.3AI score0.00126EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/01/15 9:4 a.m.5 views

net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change

...

7.5CVSS5.3AI score0.00151EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/01/13 3:31 p.m.1 views

CVE-2025-71066

In the Linux kernel, the following vulnerability has been resolved: net/sched: ets: Always remove class from active list before deleting in etsqdiscchange [email protected] says: The vulnerability is a race condition between etsqdiscdequeue and etsqdiscchange. It leads to UAF on stru...

5.2AI score0.00151EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a race condition between etsqdiscchange and etsqdiscdequeue in net/sched: ets that could lead to reuse after...

7.5CVSS6.4AI score0.00151EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/07/03 8:35 a.m.7 views

CVE-2025-38107 net_sched: ets: fix a race in ets_qdisc_change()

In the Linux kernel, the following vulnerability has been resolved: netsched: ets: fix a race in etsqdiscchange Gerrard Tai reported a race condition in ETS, whenever SFQ perturb timer fires at the wrong time. The race is as follows: CPU 0 CPU 1 1: lock root 2: qdisctreeflushbacklog 3: unlock roo...

0.00126EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/07/03 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from netsched ets competing conditions in etsqdiscchange...

7CVSS7AI score0.00126EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/06/11 12:0 a.m.8 views

PT-2025-27693

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition has been identified in the Linux kernel's ETS Enhanced Transmission Selection component. This issue occurs when the SFQ perturb timer fires at an inappropriate time,...

7CVSS6.6AI score0.00126EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/05/27 1:11 a.m.4 views

SUSE CVE-2025-37992

In the Linux kernel, the following vulnerability has been resolved: netsched: Flush gsoskb list too during -change Previously, when reducing a qdisc's limit via the -change operation, only the main skb queue was trimmed, potentially leaving packets in the gsoskb list. This could result in NULL...

5.5CVSS7.7AI score0.00159EPSS
Exploits0References17
NVD
NVD
added 2025/05/26 3:15 p.m.10 views

CVE-2025-37992

In the Linux kernel, the following vulnerability has been resolved: netsched: Flush gsoskb list too during -change Previously, when reducing a qdisc's limit via the -change operation, only the main skb queue was trimmed, potentially leaving packets in the gsoskb list. This could result in NULL...

5.5CVSS0.00159EPSS
Exploits0References9
CVE
CVE
added 2025/05/26 2:54 p.m.150 views

CVE-2025-37992

CVE-2025-37992 affects the Linux kernel net_sched subsystem. Affected: qdiscs (codel, fq, fq_codel, fq_pie, hhf, pie). Root cause: during qdisc ->change(), trimming only the main queue could leave packets on the gso_skb list, risking NULL pointer dereference when sch->limit is compared to s...

5.5CVSS6.9AI score0.00159EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/09 12:0 a.m.9 views

PT-2025-22889

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns a NULL pointer dereference in the Linux kernel's net sched component. When reducing a qdisc's limit via the -change operation, only the main skb queue was trimmed,...

5.5CVSS6.7AI score0.00159EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.4 views

The vulnerability of the sch_ets component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the schets component in the Linux operating system’s kernel is related to a memory corruption in the etsqdiscchange function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.3AI score0.00239EPSS
Exploits0References12Affected Software6
Rows per page
Query Builder