Linux Kernel UAF Vulnerability in HFSC Class with Netem Child Qdisc

Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's scheduling component, specifically within the Hierarchical Fair Service Curve (HFSC) class when it has a Netem child queue discipline. The issue arises because HFSC incorrectly assumes that a check for the queue length being zero guarantees that the class has not been inserted into the virtual tree or event tree. This assumption fails in cases where Netem creates a duplicate. The vulnerability allows for improper management of class entries, potentially leading to memory corruption or exploitation.

Impact

Exploitation of this vulnerability could lead to memory corruption, allowing for potential arbitrary code execution or causing a denial-of-service condition by disrupting normal kernel operations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel UAF Vulnerability in HFSC Class with Netem Child Qdisc

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating