CVE-2025-38087
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/06/2025
Last modified:
30/06/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
net/sched: fix use-after-free in taprio_dev_notifier<br />
<br />
Since taprio’s taprio_dev_notifier() isn’t protected by an<br />
RCU read-side critical section, a race with advance_sched()<br />
can lead to a use-after-free.<br />
<br />
Adding rcu_read_lock() inside taprio_dev_notifier() prevents this.