logo_clicknbuy.png

CVE-2025-21703 – Linux Kernel netem Use-After-Free Vulnerability

The following table lists the changes that have been made to the
CVE-2025-21703 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution
of a vulnerability, and for identifying the most recent changes that may
impact the vulnerability’s severity, exploitability, or other characteristics.

  • CVE Modified
    by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Feb. 18, 2025

    Action Type Old Value New Value
    Added CVSS V3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
    Added CWE CWE-416
  • New CVE Received
    by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

    Feb. 18, 2025

    Action Type Old Value New Value
    Added Description In the Linux kernel, the following vulnerability has been resolved:

    netem: Update sch->q.qlen before qdisc_tree_reduce_backlog()

    qdisc_tree_reduce_backlog() notifies parent qdisc only if child
    qdisc becomes empty, therefore we need to reduce the backlog of the
    child qdisc before calling it. Otherwise it would miss the opportunity
    to call cops->qlen_notify(), in the case of DRR, it resulted in UAF
    since DRR uses ->qlen_notify() to maintain its active list.
    Added Reference https://git.kernel.org/stable/c/1f8e3f4a4b8b90ad274dfbc66fc7d55cb582f4d5
    Added Reference https://git.kernel.org/stable/c/6312555249082d6d8cc5321ff725df05482d8b83
    Added Reference https://git.kernel.org/stable/c/638ba5089324796c2ee49af10427459c2de35f71
    Added Reference https://git.kernel.org/stable/c/839ecc583fa00fab785fde1c85a326743657fd32
Share the Post:

Related Posts