CVE-2025-38083

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-38083

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38083.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-38083

Downstream

BELL-CVE-2025-38083

DEBIAN-CVE-2025-38083

DLA-4327-1

DLA-4328-1

DSA-5973-1

ECHO-61f5-b70f-bdf1

ROOT-OS-DEBIAN-11-CVE-2025-38083

ROOT-OS-DEBIAN-12-CVE-2025-38083

ROOT-OS-UBUNTU-2204-CVE-2025-38083

ROOT-OS-UBUNTU-2404-CVE-2025-38083

SUSE-SU-2025:02249-1

SUSE-SU-2025:02254-1

SUSE-SU-2025:02264-1

SUSE-SU-2025:02307-1

SUSE-SU-2025:02308-1

SUSE-SU-2025:02320-1

SUSE-SU-2025:02321-1

SUSE-SU-2025:02322-1

SUSE-SU-2025:02333-1

SUSE-SU-2025:02334-1

SUSE-SU-2025:02335-1

SUSE-SU-2025:02537-1

SUSE-SU-2025:02538-1

SUSE-SU-2025:02820-1

SUSE-SU-2025:02821-1

SUSE-SU-2025:02827-1

SUSE-SU-2025:02830-1

SUSE-SU-2025:02832-1

SUSE-SU-2025:02833-1

SUSE-SU-2025:02834-1

SUSE-SU-2025:02854-1

SUSE-SU-2025:02857-1

SUSE-SU-2025:02858-1

SUSE-SU-2025:02859-1

SUSE-SU-2025:02860-1

SUSE-SU-2025:02871-1

SUSE-SU-2025:02873-1

SUSE-SU-2025:02875-1

SUSE-SU-2025:02876-1

SUSE-SU-2025:02894-1

SUSE-SU-2025:02897-1

SUSE-SU-2025:02902-1

SUSE-SU-2025:02908-1

SUSE-SU-2025:02909-1

SUSE-SU-2025:02911-1

SUSE-SU-2025:02917-1

SUSE-SU-2025:02918-1

SUSE-SU-2025:02923-1

SUSE-SU-2025:02926-1

SUSE-SU-2025:02930-1

SUSE-SU-2025:02932-1

SUSE-SU-2025:02934-1

SUSE-SU-2025:02937-1

SUSE-SU-2025:02938-1

SUSE-SU-2025:02942-1

SUSE-SU-2025:02943-1

SUSE-SU-2025:02945-1

SUSE-SU-2025:02955-1

SUSE-SU-2025:20475-1

SUSE-SU-2025:20483-1

SUSE-SU-2025:20493-1

SUSE-SU-2025:20498-1

SUSE-SU-2025:20633-1

SUSE-SU-2025:20634-1

SUSE-SU-2025:20635-1

SUSE-SU-2025:20636-1

SUSE-SU-2025:20637-1

SUSE-SU-2025:20638-1

SUSE-SU-2025:20639-1

SUSE-SU-2025:20640-1

SUSE-SU-2025:20641-1

SUSE-SU-2025:20642-1

SUSE-SU-2025:20643-1

SUSE-SU-2025:20644-1

SUSE-SU-2025:20645-1

SUSE-SU-2025:20646-1

SUSE-SU-2025:20647-1

SUSE-SU-2025:20648-1

SUSE-SU-2025:20676-1

SUSE-SU-2025:20677-1

SUSE-SU-2025:20678-1

SUSE-SU-2025:20679-1

SUSE-SU-2025:20680-1

SUSE-SU-2025:20681-1

SUSE-SU-2025:20682-1

SUSE-SU-2025:20684-1

SUSE-SU-2025:20685-1

SUSE-SU-2025:20686-1

SUSE-SU-2025:20687-1

SUSE-SU-2025:20688-1

SUSE-SU-2025:20689-1

SUSE-SU-2025:20690-1

SUSE-SU-2025:4123-1

Related

Published

2025-06-20T11:21:51.554Z

Modified

2026-03-20T12:42:39.720490Z

Summary

net_sched: prio: fix a race in prio_tune()

Details

In the Linux kernel, the following vulnerability has been resolved:

netsched: prio: fix a race in priotune()

Gerrard Tai reported a race condition in PRIO, whenever SFQ perturb timer fires at the wrong time.

The race is as follows:

CPU 0 CPU 1 | | [5]: lock root | [6]: rehash | [7]: qdisctreereduce_backlog() | This can be abused to underflow a parent's qlen.

Calling qdiscpurgequeue() instead of qdisctreeflush_backlog() should fix the race, because all packets will be purged from the qdisc before releasing the lock.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38083.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

7b8e0b6e659983154c8d7e756cdb833d89a3d4d7

Fixed

53d11560e957d53ee87a0653d258038ce12361b7

Fixed

4483d8b9127591c60c4eb789d6cab953bc4522a9

Fixed

20f68e6a9e41693cb0e55e5b9ebbcb40983a4b8f

Fixed

3aaa7c01cf19d9b9bb64b88b65c3a6fd05da2eb4

Fixed

46c15c9d0f65c9ba857d63f53264f4b17e8a715f

Fixed

e3f6745006dc9423d2b065b90f191cfa11b1b584

Fixed

93f9eeb678d4c9c1abf720b3615fa8299a490845

Fixed

d35acc1be3480505b5931f17e4ea9b7617fea4d3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38083.json"