9 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fixed a race condition in qfqaggregate. A race condition can occur when qfqchangeagg is modified called during qfqenqueue while other threads access it concurrently. For example, qfqdumpclass may trigger a NULL...
ROS-20260317-73-0017
A vulnerability in the qfqaggregate function of the Linux operating system kernel is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Security update for kernel-livepatch-MICRO-6-0_Update_9
This update for kernel-livepatch-MICRO-6-0Update9 fixes the following issues: CVE-2025-38477: net/sched: schqfq: Fix race condition on qfqaggregate bsc1247315 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
SUSE-SU-2025:20812-1 Security update for kernel-livepatch-MICRO-6-0_Update_9
This update for kernel-livepatch-MICRO-6-0Update9 fixes the following issues: - CVE-2025-38477: net/sched: schqfq: Fix race condition on qfqaggregate bsc1247315...
EUVD-2025-22885
Malicious code in bioql PyPI...
The vulnerability of the qfq_aggregate() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the qfqaggregate function in the Linux operating system’s kernel is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2025-38477 net/sched: sch_qfq: Fix race condition on qfq_aggregate
In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix race condition on qfqaggregate A race condition can occur when 'agg' is modified in qfqchangeagg called during qfqenqueue while other threads access it concurrently. For example, qfqdumpclass may trigger a...
CVE-2025-38477
Summary of CVE-2025-38477 details (from connected sources): The Linux kernel vulnerability concerns a race condition in the net/sched sch_qfq code, where the field 'agg' can be modified in qfq_change_agg during qfq_enqueue, while other threads may access it concurrently. This can lead to a NULL d...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a qfqaggregate contention condition that could lead to null pointer dereference or reuse after release...