CVE-2025-38108

UNKNOWN 0.0

net_sched: red: fix a race in __red_change()

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: net_sched: red: fix a race in __red_change() Gerrard Tai reported a race condition in RED, whenever SFQ perturb timer fires at the wrong time. The race is as follows: CPU 0 CPU 1 [1]: lock root [2]: qdisc_tree_flush_backlog() [3]: unlock root | | [5]: lock root | [6]: rehash | [7]: qdisc_tree_reduce_backlog() | [4]: qdisc_put() This can be abused to underflow a parent's qlen. Calling qdisc_purge_queue() instead of qdisc_tree_flush_backlog() should fix the race, because all packets will be purged from the qdisc before releasing the lock.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jul 3, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

0c8d13ac96070000da33f394f45e9c19638483c5 < 2790c4ec481be45a80948d059cd7c9a06bc37493 0c8d13ac96070000da33f394f45e9c19638483c5 < a1bf6a4e9264a685b0e642994031f9c5aad72414 0c8d13ac96070000da33f394f45e9c19638483c5 < 110a47efcf23438ff8d31dbd9c854fae2a48bf98 0c8d13ac96070000da33f394f45e9c19638483c5 < f569984417a4e12c67366e69bdcb752970de921d 0c8d13ac96070000da33f394f45e9c19638483c5 < 2a71924ca4af59ffc00f0444732b6cd54b153d0e 0c8d13ac96070000da33f394f45e9c19638483c5 < 4b755305b2b0618e857fdadb499365b5f2e478d1 0c8d13ac96070000da33f394f45e9c19638483c5 < 444ad445df5496a785705019268a8a84b84484bb 0c8d13ac96070000da33f394f45e9c19638483c5 < 85a3e0ede38450ea3053b8c45d28cf55208409b8

Linux / Linux

5.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗