Race Condition in Linux Kernel's Scheduling Subsystem
CVE-2025-38083

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
20 June 2025

What is CVE-2025-38083?

A race condition exists within the Linux kernel's scheduling subsystem, specifically involving the priority scheduling (prio) mechanism. This issue arises when the Stochastic Fair Queuing (SFQ) perturb timer triggers in an inappropriate sequence, allowing for potential abuse that leads to underflow in the parent's queue length (qlen). The flaw occurs during the process of flushing the backlog of queued packets, which may be exploited to disrupt normal network operations. To mitigate this, invoking qdisc_purge_queue() instead of qdisc_tree_flush_backlog() is recommended to ensure all packets are cleared before releasing the lock, thus safeguarding against this timing issue.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 7b8e0b6e659983154c8d7e756cdb833d89a3d4d7 < 53d11560e957d53ee87a0653d258038ce12361b7

Linux 7b8e0b6e659983154c8d7e756cdb833d89a3d4d7 < 4483d8b9127591c60c4eb789d6cab953bc4522a9

Linux 7b8e0b6e659983154c8d7e756cdb833d89a3d4d7 < 20f68e6a9e41693cb0e55e5b9ebbcb40983a4b8f

References

https://git.kernel.org/stable/c/53d11560e957d53ee87a0653d...
https://git.kernel.org/stable/c/4483d8b9127591c60c4eb789d...
https://git.kernel.org/stable/c/20f68e6a9e41693cb0e55e5b9...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.