CVE-2025-38177

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-38177
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38177.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38177
Downstream
Related
Published
2025-07-04T12:47:09.127Z
Modified
2026-03-12T02:18:40.584976Z
Summary
sch_hfsc: make hfsc_qlen_notify() idempotent
Details

In the Linux kernel, the following vulnerability has been resolved:

schhfsc: make hfscqlen_notify() idempotent

hfscqlennotify() is not idempotent either and not friendly to its callers, like fqcodeldequeue(). Let's make it idempotent to ease qdisctreereduce_backlog() callers' life:

  1. updatevf() decreases cl->clnactive, so we can check whether it is non-zero before calling it.

  2. eltreeremove() always removes RB node cl->elnode, but we can use RBEMPTYNODE() + RBCLEARNODE() to make it safe.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38177.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
959466588aa7f84ccf79ae36a1d89542eaf9aaec
Fixed
9a5fd5c2f4d4afdd5e405083ee53e0789ce76956
Fixed
72c61ffbeeb8c50f6d4d70c65d3283aa1bac57a7
Fixed
a5efc95a33bd4fcb879250852828cc58c7862970
Fixed
0475c85426b18eccdcb7f9fb58d8f8e9c6c58c87
Fixed
9030a91235ae4845ec71902c3e0cecfc9ed1f2df
Fixed
d06476714d2819b550e0cc39222347e2c8941c9d
Fixed
c1175c4ad01dbc9c979d099861fa90a754f72059
Fixed
51eb3b65544c9efd6a1026889ee5fb5aa62da3bb

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38177.json"