CVE-2025-38684

CVE-2025-38684 affects the Linux kernel’s net/sched ETS implementation. The issue arose from purging unused DRR queues during ets_qdisc_change(), where the code used the new value of q->nbands for cleanup. The fix ensures the purge uses the old values of q->nbands (and q->nstrict), so pu...

The vulnerability of the tcf_ct_handle_fragments() function in the net/sched/act_ct.c module of the net/sched/networking subsystem of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the tcfcthandlefragments function in the net/sched/actct.c module of the net/sched/networking subsystem of the Linux operating system is related to insufficient checking of exceptional states. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of the ets_class_from_arg() function in the net/sched/sch_ets.c module of the net/sched subsystem of the Linux operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the etsclassfromarg function in the net/sched/schets.c module of the net/sched subsystem of the Linux operating system lies in the handling of buffer overflow attacks. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...