GHSA-fp4c-f74p-8cg7

Опубликовано: 30 июн. 2025

Источник: github

Github: Не прошло ревью

Описание

In the Linux kernel, the following vulnerability has been resolved:

net/sched: fix use-after-free in taprio_dev_notifier

Since taprio’s taprio_dev_notifier() isn’t protected by an RCU read-side critical section, a race with advance_sched() can lead to a use-after-free.

Adding rcu_read_lock() inside taprio_dev_notifier() prevents this.

In the Linux kernel, the following vulnerability has been resolved:

net/sched: fix use-after-free in taprio_dev_notifier

Since taprio’s taprio_dev_notifier() isn’t protected by an RCU read-side critical section, a race with advance_sched() can lead to a use-after-free.

Adding rcu_read_lock() inside taprio_dev_notifier() prevents this.

Ссылки

EPSS

Процентиль: 5%

0.00025

Низкий

CVE ID

CVE-2025-38087

Связанные уязвимости

CVE-2025-38087

ubuntu

около 1 месяца назад

In the Linux kernel, the following vulnerability has been resolved: net/sched: fix use-after-free in taprio_dev_notifier Since taprio’s taprio_dev_notifier() isn’t protected by an RCU read-side critical section, a race with advance_sched() can lead to a use-after-free. Adding rcu_read_lock() inside taprio_dev_notifier() prevents this.