7.8

CVE-2025-37913

EPSS 0.02%
Veröffentlicht 20.05.2025 15:21:44
Zuletzt bearbeitet 17.11.2025 17:11:37
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

net_sched: qfq: Fix double list add in class with netem as child qdisc

As described in Gerrard's report [1], there are use cases where a netem
child qdisc will make the parent qdisc's enqueue callback reentrant.
In the case of qfq, there won't be a UAF, but the code will add the same
classifier to the list twice, which will cause memory corruption.

This patch checks whether the class was already added to the agg->active
list (cl_is_active) before doing the addition to cater for the reentrant
case.

[1] https://lore.kernel.org/netdev/CAHcdcOm+03OD2j6R0=YHKqmy=VgJ8xEOKuP6c7mSgnp-TEJJbw@mail.gmail.com/

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 13

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.0.1 < 5.4.294

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.238

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.182

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.138

Linux ≫ Linux Kernel Version >= 6.2 < 6.6.90

Linux ≫ Linux Kernel Version >= 6.7 < 6.12.28

Linux ≫ Linux Kernel Version >= 6.13 < 6.14.6

Linux ≫ Linux Kernel Version5.0 Update-

Linux ≫ Linux Kernel Version5.0 Updaterc3

Linux ≫ Linux Kernel Version5.0 Updaterc4

Linux ≫ Linux Kernel Version5.0 Updaterc5

Linux ≫ Linux Kernel Version5.0 Updaterc6

Linux ≫ Linux Kernel Version5.0 Updaterc7

Linux ≫ Linux Kernel Version5.0 Updaterc8

Linux ≫ Linux Kernel Version6.15 Updaterc1

Linux ≫ Linux Kernel Version6.15 Updaterc2

Linux ≫ Linux Kernel Version6.15 Updaterc3

Linux ≫ Linux Kernel Version6.15 Updaterc4

Debian ≫ Debian Linux Version11.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.026

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-415 Double Free

The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

https://git.kernel.org/stable/c/0bf32d6fb1fcbf841bb9945570e0e2a70072c00f

Patch

https://git.kernel.org/stable/c/0aa23e0856b7cedb3c88d8e3d281c212c7e4fbeb

Patch

https://git.kernel.org/stable/c/a43783119e01849fbf2fe8855634e8989b240cb4

Patch

https://git.kernel.org/stable/c/53bc0b55178bd59bdd4bcd16349505cabf54b1a2

Patch

https://git.kernel.org/stable/c/370218e8ce711684acc4cdd3cc3c6dd7956bc165

Patch

https://git.kernel.org/stable/c/f139f37dcdf34b67f5bf92bc8e0f7f6b3ac63aa4

Patch

https://git.kernel.org/stable/c/005a479540478a820c52de098e5e767e63e36f0a

Patch

https://git.kernel.org/stable/c/041f410aec2c1751ee22b8b73ba05d38c3a6a602

Patch

https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html

Mailing List

https://lists.debian.org/debian-lts-announce/2025/08/msg00010.html

Mailing List

https://nvd.nist.gov/vuln/detail/CVE-2025-37913

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-37913

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-37913

EUVD