CVE-2025-38177

Summary

In the Linux kernel, the following vulnerability has been resolved:

sch_hfsc: make hfsc_qlen_notify() idempotent

hfsc_qlen_notify() is not idempotent either and not friendly to its callers, like fq_codel_dequeue(). Let's make it idempotent to ease qdisc_tree_reduce_backlog() callers' life:

  1. update_vf() decreases cl->cl_nactive, so we can check whether it is non-zero before calling it.

  2. eltree_remove() always removes RB node cl->el_node, but we can use RB_EMPTY_NODE() + RB_CLEAR_NODE() to make it safe.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 9a5fd5c2f4d4afdd5e405083ee53e0789ce76956affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 72c61ffbeeb8c50f6d4d70c65d3283aa1bac57a7affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < a5efc95a33bd4fcb879250852828cc58c7862970affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 0475c85426b18eccdcb7f9fb58d8f8e9c6c58c87affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 9030a91235ae4845ec71902c3e0cecfc9ed1f2dfaffected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < d06476714d2819b550e0cc39222347e2c8941c9daffected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < c1175c4ad01dbc9c979d099861fa90a754f72059affected
LinuxLinux959466588aa7f84ccf79ae36a1d89542eaf9aaec < 51eb3b65544c9efd6a1026889ee5fb5aa62da3bbaffected
LinuxLinux4.14affected
LinuxLinux0 < 4.14unaffected
LinuxLinux5.4.297 <= 5.4.*unaffected
LinuxLinux5.10.241 <= 5.10.*unaffected
LinuxLinux5.15.190 <= 5.15.*unaffected
LinuxLinux6.1.138 <= 6.1.*unaffected
LinuxLinux6.6.90 <= 6.6.*unaffected
LinuxLinux6.12.28 <= 6.12.*unaffected
LinuxLinux6.14.6 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References