CVE-2025-38000Use After Free in Linux

CWE-416Use After Free69 documents9 sources
Severity
7.8HIGHNVD
OSV8.8OSV5.9OSV4.7
EPSS
0.1%
top 75.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedJun 6
Latest updateFeb 27

Description

In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() When enqueuing the first packet to an HFSC class, hfsc_enqueue() calls the child qdisc's peek() operation before incrementing sch->q.qlen and sch->qstats.backlog. If the child qdisc uses qdisc_peek_dequeued(), this may trigger an immediate dequeue and potential packet drop. In such cases, qdisc_tree_reduce_backlog() is called, but the HFSC qdisc's qlen and bac

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

NVDlinux/linux_kernel4.85.4.294+7
Debianlinux/linux_kernel< 5.10.244-1+3
Ubuntulinux/linux_kernel< 5.15.0-143.153+4
CVEListV5linux/linux12d0ad3be9c3854e52ec74bb83bb6f43612827c71034e3310752e8675e313f7271b348914008719a+8

Also affects: Debian Linux 11.0

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

35
OSV
linux-azure-5.15 vulnerabilities2025-09-02
OSV
linux-azure-fips vulnerabilities2025-08-22
OSV
linux-raspi vulnerabilities2025-08-05
OSV
linux-iot vulnerabilities2025-08-04
OSV
linux-azure vulnerabilities2025-07-30

📋Vendor Advisories

33
Chrome
Long Term Support Channel Update for ChromeOS: CVE-2025-380002026-02-27
Ubuntu
Linux kernel (Azure) vulnerabilities2025-09-02
Ubuntu
Linux kernel (Azure FIPS) vulnerabilities2025-08-22
Ubuntu
Linux kernel (Raspberry Pi) vulnerabilities2025-08-05
Ubuntu
Linux kernel (IoT) vulnerabilities2025-08-04
CVE-2025-38000 — Use After Free in Linux | cvebase