CVE-2025-38193
Published: Jul 4, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: reject invalid perturb period Gerrard Tai reported that SFQ perturb_period has no range check yet, and this can be used to trigger a race condition fixed in a separate patch. We want to make sure ctl->perturb_period * HZ will not overflow and is positive. tc qd add dev lo root sfq perturb -10 # negative value : error Error: sch_sfq: invalid perturb period. tc qd add dev lo root sfq perturb 1000000000 # too big : error Error: sch_sfq: invalid perturb period. tc qd add dev lo root sfq perturb 2000000 # acceptable value tc -s -d qd sh dev lo qdisc sfq 8005: root refcnt 2 limit 127p quantum 64Kb depth 127 flows 128 divisor 1024 perturb 2000000sec Sent 0 bytes 0 pkt (dropped 0, overlimits 0 requeues 0) backlog 0b 0p requeues 0
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < e0936ff56be4e08ad5b60ec26971eae0c40af305affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 2254d038dab9c194fe6a4b1ce31034f42e91a6e5affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 956b5aebb349449b38d920d444ca1392d43719d1affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < b11a50544af691b787384089b68f740ae20a441baffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 0357da9149eac621f39e235a135ebf155f01f7c3+3 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 5.4.297 - <= 5.4.*unaffected 5.10.240 - <= 5.10.*unaffected 5.15.186 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now