QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2025-38083

Back to search

CVE-2025-38083

Published: Jun 20, 2025

Modified: May 12, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net_sched: prio: fix a race in prio_tune() Gerrard Tai reported a race condition in PRIO, whenever SFQ perturb timer fires at the wrong time. The race is as follows: CPU 0 CPU 1 [1]: lock root [2]: qdisc_tree_flush_backlog() [3]: unlock root | | [5]: lock root | [6]: rehash | [7]: qdisc_tree_reduce_backlog() | [4]: qdisc_put() This can be abused to underflow a parent's qlen. Calling qdisc_purge_queue() instead of qdisc_tree_flush_backlog() should fix the race, because all packets will be purged from the qdisc before releasing the lock.

VendorProductVersions

Linux

Linux

affected
7b8e0b6e659983154c8d7e756cdb833d89a3d4d7 - < 53d11560e957d53ee87a0653d258038ce12361b7
affected
7b8e0b6e659983154c8d7e756cdb833d89a3d4d7 - < 4483d8b9127591c60c4eb789d6cab953bc4522a9
affected
7b8e0b6e659983154c8d7e756cdb833d89a3d4d7 - < 20f68e6a9e41693cb0e55e5b9ebbcb40983a4b8f
affected
7b8e0b6e659983154c8d7e756cdb833d89a3d4d7 - < 3aaa7c01cf19d9b9bb64b88b65c3a6fd05da2eb4
affected
7b8e0b6e659983154c8d7e756cdb833d89a3d4d7 - < 46c15c9d0f65c9ba857d63f53264f4b17e8a715f

+3 more versions

Linux

Linux

affected
5.0
unaffected
0 - < 5.0
unaffected
5.4.295 - <= 5.4.*
unaffected
5.10.239 - <= 5.10.*
unaffected
5.15.186 - <= 5.15.*

+5 more versions

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now