exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:"GHSA-cg86-m5xc-jqrm" OR bind:"CVE-2025-21703"

exploitDog

bind:"GHSA-cg86-m5xc-jqrm" OR bind:"CVE-2025-21703"

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 16

Количество 16

GHSA-cg86-m5xc-jqrm

5 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: netem: Update sch->q.qlen before qdisc_tree_reduce_backlog() qdisc_tree_reduce_backlog() notifies parent qdisc only if child qdisc becomes empty, therefore we need to reduce the backlog of the child qdisc before calling it. Otherwise it would miss the opportunity to call cops->qlen_notify(), in the case of DRR, it resulted in UAF since DRR uses ->qlen_notify() to maintain its active list.

CVSS3: 7.8

EPSS: Низкий

CVE-2025-21703

5 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: netem: Update sch->q.qlen before qdisc_tree_reduce_backlog() qdisc_tree_reduce_backlog() notifies parent qdisc only if child qdisc becomes empty, therefore we need to reduce the backlog of the child qdisc before calling it. Otherwise it would miss the opportunity to call cops->qlen_notify(), in the case of DRR, it resulted in UAF since DRR uses ->qlen_notify() to maintain its active list.

CVSS3: 7.8

EPSS: Низкий

CVE-2025-21703

5 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: netem: Update sch->q.qlen before qdisc_tree_reduce_backlog() qdisc_tree_reduce_backlog() notifies parent qdisc only if child qdisc becomes empty, therefore we need to reduce the backlog of the child qdisc before calling it. Otherwise it would miss the opportunity to call cops->qlen_notify(), in the case of DRR, it resulted in UAF since DRR uses ->qlen_notify() to maintain its active list.

CVSS3: 7

EPSS: Низкий

CVE-2025-21703

5 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: netem: Update sch->q.qlen before qdisc_tree_reduce_backlog() qdisc_tree_reduce_backlog() notifies parent qdisc only if child qdisc becomes empty, therefore we need to reduce the backlog of the child qdisc before calling it. Otherwise it would miss the opportunity to call cops->qlen_notify(), in the case of DRR, it resulted in UAF since DRR uses ->qlen_notify() to maintain its active list.

CVSS3: 7.8

EPSS: Низкий

CVE-2025-21703

3 месяца назад

CVSS3: 7.8

EPSS: Низкий

CVE-2025-21703

5 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: n ...

CVSS3: 7.8

EPSS: Низкий

BDU:2025-02204

6 месяцев назад

Уязвимость функции netem_dequeue() модуля net/sched/sch_netem.c подсистемы управления трафиком net/sched ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации.

CVSS3: 7.8

EPSS: Низкий

SUSE-SU-2025:02308-1

6 дней назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2025:1177-1

3 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2025:1180-1

3 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2025:1178-1

3 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2025:1293-1

3 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2025:02264-1

11 дней назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2025:01951-1

около 1 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2025:01967-1

около 1 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2025:01919-1

около 1 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	GHSA-cg86-m5xc-jqrm In the Linux kernel, the following vulnerability has been resolved: netem: Update sch->q.qlen before qdisc_tree_reduce_backlog() qdisc_tree_reduce_backlog() notifies parent qdisc only if child qdisc becomes empty, therefore we need to reduce the backlog of the child qdisc before calling it. Otherwise it would miss the opportunity to call cops->qlen_notify(), in the case of DRR, it resulted in UAF since DRR uses ->qlen_notify() to maintain its active list.	CVSS3: 7.8	0% Низкий	5 месяцев назад
	CVE-2025-21703 In the Linux kernel, the following vulnerability has been resolved: netem: Update sch->q.qlen before qdisc_tree_reduce_backlog() qdisc_tree_reduce_backlog() notifies parent qdisc only if child qdisc becomes empty, therefore we need to reduce the backlog of the child qdisc before calling it. Otherwise it would miss the opportunity to call cops->qlen_notify(), in the case of DRR, it resulted in UAF since DRR uses ->qlen_notify() to maintain its active list.	CVSS3: 7.8	0% Низкий	5 месяцев назад
	CVE-2025-21703 In the Linux kernel, the following vulnerability has been resolved: netem: Update sch->q.qlen before qdisc_tree_reduce_backlog() qdisc_tree_reduce_backlog() notifies parent qdisc only if child qdisc becomes empty, therefore we need to reduce the backlog of the child qdisc before calling it. Otherwise it would miss the opportunity to call cops->qlen_notify(), in the case of DRR, it resulted in UAF since DRR uses ->qlen_notify() to maintain its active list.	CVSS3: 7	0% Низкий	5 месяцев назад
	CVE-2025-21703 In the Linux kernel, the following vulnerability has been resolved: netem: Update sch->q.qlen before qdisc_tree_reduce_backlog() qdisc_tree_reduce_backlog() notifies parent qdisc only if child qdisc becomes empty, therefore we need to reduce the backlog of the child qdisc before calling it. Otherwise it would miss the opportunity to call cops->qlen_notify(), in the case of DRR, it resulted in UAF since DRR uses ->qlen_notify() to maintain its active list.	CVSS3: 7.8	0% Низкий	5 месяцев назад
	CVE-2025-21703	CVSS3: 7.8	0% Низкий	3 месяца назад
	CVE-2025-21703 In the Linux kernel, the following vulnerability has been resolved: n ...	CVSS3: 7.8	0% Низкий	5 месяцев назад
	BDU:2025-02204 Уязвимость функции netem_dequeue() модуля net/sched/sch_netem.c подсистемы управления трафиком net/sched ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации.	CVSS3: 7.8	0% Низкий	6 месяцев назад
	SUSE-SU-2025:02308-1 Security update for the Linux Kernel			6 дней назад
	SUSE-SU-2025:1177-1 Security update for the Linux Kernel			3 месяца назад
	SUSE-SU-2025:1180-1 Security update for the Linux Kernel			3 месяца назад
	SUSE-SU-2025:1178-1 Security update for the Linux Kernel			3 месяца назад
	SUSE-SU-2025:1293-1 Security update for the Linux Kernel			3 месяца назад
	SUSE-SU-2025:02264-1 Security update for the Linux Kernel			11 дней назад
	SUSE-SU-2025:01951-1 Security update for the Linux Kernel			около 1 месяца назад
	SUSE-SU-2025:01967-1 Security update for the Linux Kernel			около 1 месяца назад
	SUSE-SU-2025:01919-1 Security update for the Linux Kernel			около 1 месяца назад

Уязвимостей на страницу