CVE-2025-37890

In the Linux kernel, the following vulnerability has been resolved:

net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc

As described in Gerrards report [1], we have a UAF case when an hfsc class has a netem child qdisc. The crux of the issue is that hfsc is assuming that checking for cl->qdisc->q.qlen == 0 guarantees that it hasnt inserted the class in the vttree or eltree (which is not true for the netem duplicate case).

This patch checks the n_active class variable to make sure that the code wont insert the class in the vttree or eltree twice, catering for the reentrant case.

[1] https://lore.kernel.org/netdev/CAHcdcOm+03OD2j6R0=YHKqmy=VgJ8xEOKuP6c7mSgnp-TEJJbw@mail.gmail.com/

Weakness

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory “belongs” to the code that operates on the new pointer.

Affected Software

Name	Vendor	Start Version	End Version
Linux_kernel	Linux	5.0.1 (including)	5.4.294 (excluding)
Linux_kernel	Linux	5.5 (including)	5.10.238 (excluding)
Linux_kernel	Linux	5.11 (including)	5.15.182 (excluding)
Linux_kernel	Linux	5.16 (including)	6.1.138 (excluding)
Linux_kernel	Linux	6.2 (including)	6.6.90 (excluding)
Linux_kernel	Linux	6.7 (including)	6.12.28 (excluding)
Linux_kernel	Linux	6.13 (including)	6.14.6 (excluding)
Linux_kernel	Linux	5.0 (including)	5.0 (including)
Linux_kernel	Linux	5.0-rc3 (including)	5.0-rc3 (including)
Linux_kernel	Linux	5.0-rc4 (including)	5.0-rc4 (including)
Linux_kernel	Linux	5.0-rc5 (including)	5.0-rc5 (including)
Linux_kernel	Linux	5.0-rc6 (including)	5.0-rc6 (including)
Linux_kernel	Linux	5.0-rc7 (including)	5.0-rc7 (including)
Linux_kernel	Linux	5.0-rc8 (including)	5.0-rc8 (including)
Linux_kernel	Linux	6.15-rc1 (including)	6.15-rc1 (including)
Linux_kernel	Linux	6.15-rc2 (including)	6.15-rc2 (including)
Linux_kernel	Linux	6.15-rc3 (including)	6.15-rc3 (including)
Linux_kernel	Linux	6.15-rc4 (including)	6.15-rc4 (including)
Red Hat Enterprise Linux 10	RedHat	kernel-0:6.12.0-55.25.1.el10_0	*
Red Hat Enterprise Linux 8	RedHat	kernel-rt-0:4.18.0-553.66.1.rt7.407.el8_10	*
Red Hat Enterprise Linux 8	RedHat	kernel-0:4.18.0-553.66.1.el8_10	*
Red Hat Enterprise Linux 8	RedHat	kpatch-patch	*
Red Hat Enterprise Linux 8.2 Advanced Update Support	RedHat	kernel-0:4.18.0-193.165.1.el8_2	*
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support	RedHat	kernel-0:4.18.0-305.170.1.el8_4	*
Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On	RedHat	kernel-0:4.18.0-305.170.1.el8_4	*
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support	RedHat	kernel-0:4.18.0-372.158.1.el8_6	*
Red Hat Enterprise Linux 8.6 Telecommunications Update Service	RedHat	kernel-0:4.18.0-372.158.1.el8_6	*
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions	RedHat	kernel-0:4.18.0-372.158.1.el8_6	*
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions	RedHat	kpatch-patch	*
Red Hat Enterprise Linux 8.8 Telecommunications Update Service	RedHat	kernel-0:4.18.0-477.107.1.el8_8	*
Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions	RedHat	kernel-0:4.18.0-477.107.1.el8_8	*
Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions	RedHat	kpatch-patch	*
Red Hat Enterprise Linux 9	RedHat	kernel-0:5.14.0-570.32.1.el9_6	*
Red Hat Enterprise Linux 9	RedHat	kernel-0:5.14.0-570.32.1.el9_6	*
Red Hat Enterprise Linux 9	RedHat	kpatch-patch	*
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions	RedHat	kernel-0:5.14.0-70.144.1.el9_0	*
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions	RedHat	kernel-rt-0:5.14.0-70.144.1.rt21.216.el9_0	*
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions	RedHat	kpatch-patch	*
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions	RedHat	kernel-0:5.14.0-284.128.1.el9_2	*
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions	RedHat	kpatch-patch	*
Red Hat Enterprise Linux 9.4 Extended Update Support	RedHat	kernel-0:5.14.0-427.81.1.el9_4	*
Red Hat Enterprise Linux 9.4 Extended Update Support	RedHat	kpatch-patch	*
Linux	Ubuntu	esm-infra/focal	*
Linux	Ubuntu	focal	*
Linux	Ubuntu	jammy	*
Linux	Ubuntu	noble	*
Linux	Ubuntu	oracular	*
Linux	Ubuntu	plucky	*
Linux	Ubuntu	upstream	*
Linux-allwinner-5.19	Ubuntu	jammy	*
Linux-allwinner-5.19	Ubuntu	upstream	*
Linux-aws	Ubuntu	esm-infra/focal	*
Linux-aws	Ubuntu	focal	*
Linux-aws	Ubuntu	jammy	*
Linux-aws	Ubuntu	noble	*
Linux-aws	Ubuntu	oracular	*
Linux-aws	Ubuntu	plucky	*
Linux-aws	Ubuntu	upstream	*
Linux-aws-5.0	Ubuntu	bionic	*
Linux-aws-5.0	Ubuntu	esm-infra/bionic	*
Linux-aws-5.0	Ubuntu	upstream	*
Linux-aws-5.11	Ubuntu	esm-infra/focal	*
Linux-aws-5.11	Ubuntu	focal	*
Linux-aws-5.11	Ubuntu	upstream	*
Linux-aws-5.13	Ubuntu	esm-infra/focal	*
Linux-aws-5.13	Ubuntu	focal	*
Linux-aws-5.13	Ubuntu	upstream	*
Linux-aws-5.15	Ubuntu	esm-infra/focal	*
Linux-aws-5.15	Ubuntu	focal	*
Linux-aws-5.15	Ubuntu	upstream	*
Linux-aws-5.19	Ubuntu	jammy	*
Linux-aws-5.19	Ubuntu	upstream	*
Linux-aws-5.3	Ubuntu	bionic	*
Linux-aws-5.3	Ubuntu	esm-infra/bionic	*
Linux-aws-5.3	Ubuntu	upstream	*
Linux-aws-5.4	Ubuntu	bionic	*
Linux-aws-5.4	Ubuntu	esm-infra/bionic	*
Linux-aws-5.4	Ubuntu	upstream	*
Linux-aws-5.8	Ubuntu	esm-infra/focal	*
Linux-aws-5.8	Ubuntu	focal	*
Linux-aws-5.8	Ubuntu	upstream	*
Linux-aws-6.14	Ubuntu	noble	*
Linux-aws-6.14	Ubuntu	upstream	*
Linux-aws-6.2	Ubuntu	jammy	*
Linux-aws-6.2	Ubuntu	upstream	*
Linux-aws-6.5	Ubuntu	jammy	*
Linux-aws-6.5	Ubuntu	upstream	*
Linux-aws-6.8	Ubuntu	jammy	*
Linux-aws-6.8	Ubuntu	upstream	*
Linux-aws-fips	Ubuntu	fips-preview/jammy	*
Linux-aws-fips	Ubuntu	fips-updates/focal	*
Linux-aws-fips	Ubuntu	fips-updates/jammy	*
Linux-aws-fips	Ubuntu	fips/focal	*
Linux-aws-fips	Ubuntu	trusty	*
Linux-aws-fips	Ubuntu	upstream	*
Linux-aws-fips	Ubuntu	xenial	*
Linux-aws-hwe	Ubuntu	upstream	*
Linux-azure	Ubuntu	bionic	*
Linux-azure	Ubuntu	esm-infra/bionic	*
Linux-azure	Ubuntu	esm-infra/focal	*
Linux-azure	Ubuntu	focal	*
Linux-azure	Ubuntu	jammy	*
Linux-azure	Ubuntu	noble	*
Linux-azure	Ubuntu	oracular	*
Linux-azure	Ubuntu	plucky	*
Linux-azure	Ubuntu	upstream	*
Linux-azure-4.15	Ubuntu	upstream	*
Linux-azure-5.11	Ubuntu	esm-infra/focal	*
Linux-azure-5.11	Ubuntu	focal	*
Linux-azure-5.11	Ubuntu	upstream	*
Linux-azure-5.13	Ubuntu	esm-infra/focal	*
Linux-azure-5.13	Ubuntu	focal	*
Linux-azure-5.13	Ubuntu	upstream	*
Linux-azure-5.15	Ubuntu	esm-infra/focal	*
Linux-azure-5.15	Ubuntu	focal	*
Linux-azure-5.15	Ubuntu	upstream	*
Linux-azure-5.19	Ubuntu	jammy	*
Linux-azure-5.19	Ubuntu	upstream	*
Linux-azure-5.3	Ubuntu	bionic	*
Linux-azure-5.3	Ubuntu	esm-infra/bionic	*
Linux-azure-5.3	Ubuntu	upstream	*
Linux-azure-5.4	Ubuntu	bionic	*
Linux-azure-5.4	Ubuntu	esm-infra/bionic	*
Linux-azure-5.4	Ubuntu	upstream	*
Linux-azure-5.8	Ubuntu	esm-infra/focal	*
Linux-azure-5.8	Ubuntu	focal	*
Linux-azure-5.8	Ubuntu	upstream	*
Linux-azure-6.11	Ubuntu	noble	*
Linux-azure-6.11	Ubuntu	upstream	*
Linux-azure-6.14	Ubuntu	upstream	*
Linux-azure-6.2	Ubuntu	jammy	*
Linux-azure-6.2	Ubuntu	upstream	*
Linux-azure-6.5	Ubuntu	jammy	*
Linux-azure-6.5	Ubuntu	upstream	*
Linux-azure-6.8	Ubuntu	jammy	*
Linux-azure-6.8	Ubuntu	upstream	*
Linux-azure-edge	Ubuntu	bionic	*
Linux-azure-edge	Ubuntu	esm-infra/bionic	*
Linux-azure-edge	Ubuntu	upstream	*
Linux-azure-fde	Ubuntu	esm-infra/focal	*
Linux-azure-fde	Ubuntu	focal	*
Linux-azure-fde	Ubuntu	jammy	*
Linux-azure-fde	Ubuntu	upstream	*
Linux-azure-fde-5.15	Ubuntu	upstream	*
Linux-azure-fde-5.19	Ubuntu	jammy	*
Linux-azure-fde-5.19	Ubuntu	upstream	*
Linux-azure-fde-6.14	Ubuntu	upstream	*
Linux-azure-fde-6.2	Ubuntu	jammy	*
Linux-azure-fde-6.2	Ubuntu	upstream	*
Linux-azure-fde-6.8	Ubuntu	upstream	*
Linux-azure-fips	Ubuntu	fips-preview/jammy	*
Linux-azure-fips	Ubuntu	fips-updates/focal	*
Linux-azure-fips	Ubuntu	fips-updates/jammy	*
Linux-azure-fips	Ubuntu	fips/focal	*
Linux-azure-fips	Ubuntu	trusty	*
Linux-azure-fips	Ubuntu	upstream	*
Linux-azure-fips	Ubuntu	xenial	*
Linux-azure-nvidia	Ubuntu	noble	*
Linux-azure-nvidia	Ubuntu	upstream	*
Linux-azure-nvidia-6.14	Ubuntu	upstream	*
Linux-bluefield	Ubuntu	bluefield/jammy	*
Linux-bluefield	Ubuntu	esm-infra/focal	*
Linux-bluefield	Ubuntu	focal	*
Linux-bluefield	Ubuntu	upstream	*
Linux-fips	Ubuntu	fips-preview/jammy	*
Linux-fips	Ubuntu	fips-updates/focal	*
Linux-fips	Ubuntu	fips-updates/jammy	*
Linux-fips	Ubuntu	fips-updates/noble	*
Linux-fips	Ubuntu	fips/focal	*
Linux-fips	Ubuntu	upstream	*
Linux-gcp	Ubuntu	bionic	*
Linux-gcp	Ubuntu	esm-infra/bionic	*
Linux-gcp	Ubuntu	esm-infra/focal	*
Linux-gcp	Ubuntu	focal	*
Linux-gcp	Ubuntu	jammy	*
Linux-gcp	Ubuntu	noble	*
Linux-gcp	Ubuntu	oracular	*
Linux-gcp	Ubuntu	plucky	*
Linux-gcp	Ubuntu	upstream	*
Linux-gcp-4.15	Ubuntu	upstream	*
Linux-gcp-5.11	Ubuntu	esm-infra/focal	*
Linux-gcp-5.11	Ubuntu	focal	*
Linux-gcp-5.11	Ubuntu	upstream	*
Linux-gcp-5.13	Ubuntu	esm-infra/focal	*
Linux-gcp-5.13	Ubuntu	focal	*
Linux-gcp-5.13	Ubuntu	upstream	*
Linux-gcp-5.15	Ubuntu	esm-infra/focal	*
Linux-gcp-5.15	Ubuntu	focal	*
Linux-gcp-5.15	Ubuntu	upstream	*
Linux-gcp-5.19	Ubuntu	jammy	*
Linux-gcp-5.19	Ubuntu	upstream	*
Linux-gcp-5.3	Ubuntu	bionic	*
Linux-gcp-5.3	Ubuntu	esm-infra/bionic	*
Linux-gcp-5.3	Ubuntu	upstream	*
Linux-gcp-5.4	Ubuntu	bionic	*
Linux-gcp-5.4	Ubuntu	esm-infra/bionic	*
Linux-gcp-5.4	Ubuntu	upstream	*
Linux-gcp-5.8	Ubuntu	esm-infra/focal	*
Linux-gcp-5.8	Ubuntu	focal	*
Linux-gcp-5.8	Ubuntu	upstream	*
Linux-gcp-6.11	Ubuntu	noble	*
Linux-gcp-6.11	Ubuntu	upstream	*
Linux-gcp-6.14	Ubuntu	noble	*
Linux-gcp-6.14	Ubuntu	upstream	*
Linux-gcp-6.2	Ubuntu	jammy	*
Linux-gcp-6.2	Ubuntu	upstream	*
Linux-gcp-6.5	Ubuntu	jammy	*
Linux-gcp-6.5	Ubuntu	upstream	*
Linux-gcp-6.8	Ubuntu	jammy	*
Linux-gcp-6.8	Ubuntu	upstream	*
Linux-gcp-fips	Ubuntu	fips-preview/jammy	*
Linux-gcp-fips	Ubuntu	fips-updates/focal	*
Linux-gcp-fips	Ubuntu	fips-updates/jammy	*
Linux-gcp-fips	Ubuntu	fips/focal	*
Linux-gcp-fips	Ubuntu	trusty	*
Linux-gcp-fips	Ubuntu	upstream	*
Linux-gcp-fips	Ubuntu	xenial	*
Linux-gke	Ubuntu	esm-infra/focal	*
Linux-gke	Ubuntu	focal	*
Linux-gke	Ubuntu	jammy	*
Linux-gke	Ubuntu	noble	*
Linux-gke	Ubuntu	upstream	*
Linux-gke	Ubuntu	xenial	*
Linux-gke-4.15	Ubuntu	bionic	*
Linux-gke-4.15	Ubuntu	esm-infra/bionic	*
Linux-gke-4.15	Ubuntu	upstream	*
Linux-gke-5.15	Ubuntu	esm-infra/focal	*
Linux-gke-5.15	Ubuntu	focal	*
Linux-gke-5.15	Ubuntu	upstream	*
Linux-gke-5.4	Ubuntu	bionic	*
Linux-gke-5.4	Ubuntu	esm-infra/bionic	*
Linux-gke-5.4	Ubuntu	upstream	*
Linux-gkeop	Ubuntu	esm-infra/focal	*
Linux-gkeop	Ubuntu	focal	*
Linux-gkeop	Ubuntu	jammy	*
Linux-gkeop	Ubuntu	noble	*
Linux-gkeop	Ubuntu	upstream	*
Linux-gkeop-5.15	Ubuntu	esm-infra/focal	*
Linux-gkeop-5.15	Ubuntu	focal	*
Linux-gkeop-5.15	Ubuntu	upstream	*
Linux-gkeop-5.4	Ubuntu	bionic	*
Linux-gkeop-5.4	Ubuntu	esm-infra/bionic	*
Linux-gkeop-5.4	Ubuntu	upstream	*
Linux-hwe	Ubuntu	bionic	*
Linux-hwe	Ubuntu	esm-infra/bionic	*
Linux-hwe	Ubuntu	upstream	*
Linux-hwe-5.11	Ubuntu	esm-infra/focal	*
Linux-hwe-5.11	Ubuntu	focal	*
Linux-hwe-5.11	Ubuntu	upstream	*
Linux-hwe-5.13	Ubuntu	esm-infra/focal	*
Linux-hwe-5.13	Ubuntu	focal	*
Linux-hwe-5.13	Ubuntu	upstream	*
Linux-hwe-5.15	Ubuntu	esm-infra/focal	*
Linux-hwe-5.15	Ubuntu	focal	*
Linux-hwe-5.15	Ubuntu	upstream	*
Linux-hwe-5.19	Ubuntu	jammy	*
Linux-hwe-5.19	Ubuntu	upstream	*
Linux-hwe-5.4	Ubuntu	bionic	*
Linux-hwe-5.4	Ubuntu	esm-infra/bionic	*
Linux-hwe-5.4	Ubuntu	upstream	*
Linux-hwe-5.8	Ubuntu	esm-infra/focal	*
Linux-hwe-5.8	Ubuntu	focal	*
Linux-hwe-5.8	Ubuntu	upstream	*
Linux-hwe-6.11	Ubuntu	noble	*
Linux-hwe-6.11	Ubuntu	upstream	*
Linux-hwe-6.14	Ubuntu	upstream	*
Linux-hwe-6.2	Ubuntu	jammy	*
Linux-hwe-6.2	Ubuntu	upstream	*
Linux-hwe-6.5	Ubuntu	jammy	*
Linux-hwe-6.5	Ubuntu	upstream	*
Linux-hwe-6.8	Ubuntu	jammy	*
Linux-hwe-6.8	Ubuntu	upstream	*
Linux-hwe-edge	Ubuntu	bionic	*
Linux-hwe-edge	Ubuntu	esm-infra/bionic	*
Linux-hwe-edge	Ubuntu	esm-infra/xenial	*
Linux-hwe-edge	Ubuntu	upstream	*
Linux-hwe-edge	Ubuntu	xenial	*
Linux-ibm	Ubuntu	esm-infra/focal	*
Linux-ibm	Ubuntu	focal	*
Linux-ibm	Ubuntu	jammy	*
Linux-ibm	Ubuntu	noble	*
Linux-ibm	Ubuntu	upstream	*
Linux-ibm-5.15	Ubuntu	esm-infra/focal	*
Linux-ibm-5.15	Ubuntu	focal	*
Linux-ibm-5.15	Ubuntu	upstream	*
Linux-ibm-5.4	Ubuntu	bionic	*
Linux-ibm-5.4	Ubuntu	esm-infra/bionic	*
Linux-ibm-5.4	Ubuntu	upstream	*
Linux-ibm-6.8	Ubuntu	jammy	*
Linux-ibm-6.8	Ubuntu	upstream	*
Linux-intel	Ubuntu	upstream	*
Linux-intel-5.13	Ubuntu	esm-infra/focal	*
Linux-intel-5.13	Ubuntu	focal	*
Linux-intel-5.13	Ubuntu	upstream	*
Linux-intel-iot-realtime	Ubuntu	jammy	*
Linux-intel-iot-realtime	Ubuntu	realtime/jammy	*
Linux-intel-iot-realtime	Ubuntu	upstream	*
Linux-intel-iotg	Ubuntu	jammy	*
Linux-intel-iotg	Ubuntu	upstream	*
Linux-intel-iotg-5.15	Ubuntu	esm-infra/focal	*
Linux-intel-iotg-5.15	Ubuntu	focal	*
Linux-intel-iotg-5.15	Ubuntu	upstream	*
Linux-iot	Ubuntu	esm-infra/focal	*
Linux-iot	Ubuntu	focal	*
Linux-iot	Ubuntu	upstream	*
Linux-kvm	Ubuntu	esm-infra/focal	*
Linux-kvm	Ubuntu	focal	*
Linux-kvm	Ubuntu	jammy	*
Linux-kvm	Ubuntu	upstream	*
Linux-lowlatency	Ubuntu	jammy	*
Linux-lowlatency	Ubuntu	noble	*
Linux-lowlatency	Ubuntu	oracular	*
Linux-lowlatency	Ubuntu	upstream	*
Linux-lowlatency-hwe-5.15	Ubuntu	esm-infra/focal	*
Linux-lowlatency-hwe-5.15	Ubuntu	focal	*
Linux-lowlatency-hwe-5.15	Ubuntu	upstream	*
Linux-lowlatency-hwe-5.19	Ubuntu	jammy	*
Linux-lowlatency-hwe-5.19	Ubuntu	upstream	*
Linux-lowlatency-hwe-6.11	Ubuntu	noble	*
Linux-lowlatency-hwe-6.11	Ubuntu	upstream	*
Linux-lowlatency-hwe-6.2	Ubuntu	jammy	*
Linux-lowlatency-hwe-6.2	Ubuntu	upstream	*
Linux-lowlatency-hwe-6.5	Ubuntu	jammy	*
Linux-lowlatency-hwe-6.5	Ubuntu	upstream	*
Linux-lowlatency-hwe-6.8	Ubuntu	jammy	*
Linux-lowlatency-hwe-6.8	Ubuntu	upstream	*
Linux-lts-xenial	Ubuntu	upstream	*
Linux-nvidia	Ubuntu	jammy	*
Linux-nvidia	Ubuntu	noble	*
Linux-nvidia	Ubuntu	upstream	*
Linux-nvidia-6.11	Ubuntu	noble	*
Linux-nvidia-6.11	Ubuntu	upstream	*
Linux-nvidia-6.2	Ubuntu	jammy	*
Linux-nvidia-6.2	Ubuntu	upstream	*
Linux-nvidia-6.5	Ubuntu	jammy	*
Linux-nvidia-6.5	Ubuntu	upstream	*
Linux-nvidia-6.8	Ubuntu	jammy	*
Linux-nvidia-6.8	Ubuntu	upstream	*
Linux-nvidia-lowlatency	Ubuntu	noble	*
Linux-nvidia-lowlatency	Ubuntu	upstream	*
Linux-nvidia-tegra	Ubuntu	jammy	*
Linux-nvidia-tegra	Ubuntu	noble	*
Linux-nvidia-tegra	Ubuntu	upstream	*
Linux-nvidia-tegra-5.15	Ubuntu	esm-infra/focal	*
Linux-nvidia-tegra-5.15	Ubuntu	focal	*
Linux-nvidia-tegra-5.15	Ubuntu	upstream	*
Linux-nvidia-tegra-igx	Ubuntu	jammy	*
Linux-nvidia-tegra-igx	Ubuntu	upstream	*
Linux-oem	Ubuntu	bionic	*
Linux-oem	Ubuntu	esm-infra/bionic	*
Linux-oem	Ubuntu	upstream	*
Linux-oem	Ubuntu	xenial	*
Linux-oem-5.10	Ubuntu	esm-infra/focal	*
Linux-oem-5.10	Ubuntu	focal	*
Linux-oem-5.10	Ubuntu	upstream	*
Linux-oem-5.13	Ubuntu	esm-infra/focal	*
Linux-oem-5.13	Ubuntu	focal	*
Linux-oem-5.13	Ubuntu	upstream	*
Linux-oem-5.14	Ubuntu	esm-infra/focal	*
Linux-oem-5.14	Ubuntu	focal	*
Linux-oem-5.14	Ubuntu	upstream	*
Linux-oem-5.17	Ubuntu	jammy	*
Linux-oem-5.17	Ubuntu	upstream	*
Linux-oem-5.6	Ubuntu	esm-infra/focal	*
Linux-oem-5.6	Ubuntu	focal	*
Linux-oem-5.6	Ubuntu	upstream	*
Linux-oem-6.0	Ubuntu	jammy	*
Linux-oem-6.0	Ubuntu	upstream	*
Linux-oem-6.1	Ubuntu	jammy	*
Linux-oem-6.1	Ubuntu	upstream	*
Linux-oem-6.11	Ubuntu	noble	*
Linux-oem-6.11	Ubuntu	upstream	*
Linux-oem-6.14	Ubuntu	noble	*
Linux-oem-6.14	Ubuntu	upstream	*
Linux-oem-6.17	Ubuntu	upstream	*
Linux-oem-6.5	Ubuntu	jammy	*
Linux-oem-6.5	Ubuntu	upstream	*
Linux-oem-6.8	Ubuntu	noble	*
Linux-oem-6.8	Ubuntu	upstream	*
Linux-oracle	Ubuntu	esm-infra/focal	*
Linux-oracle	Ubuntu	focal	*
Linux-oracle	Ubuntu	jammy	*
Linux-oracle	Ubuntu	noble	*
Linux-oracle	Ubuntu	oracular	*
Linux-oracle	Ubuntu	plucky	*
Linux-oracle	Ubuntu	upstream	*
Linux-oracle-5.0	Ubuntu	bionic	*
Linux-oracle-5.0	Ubuntu	esm-infra/bionic	*
Linux-oracle-5.0	Ubuntu	upstream	*
Linux-oracle-5.11	Ubuntu	esm-infra/focal	*
Linux-oracle-5.11	Ubuntu	focal	*
Linux-oracle-5.11	Ubuntu	upstream	*
Linux-oracle-5.13	Ubuntu	esm-infra/focal	*
Linux-oracle-5.13	Ubuntu	focal	*
Linux-oracle-5.13	Ubuntu	upstream	*
Linux-oracle-5.15	Ubuntu	esm-infra/focal	*
Linux-oracle-5.15	Ubuntu	focal	*
Linux-oracle-5.15	Ubuntu	upstream	*
Linux-oracle-5.3	Ubuntu	bionic	*
Linux-oracle-5.3	Ubuntu	esm-infra/bionic	*
Linux-oracle-5.3	Ubuntu	upstream	*
Linux-oracle-5.4	Ubuntu	bionic	*
Linux-oracle-5.4	Ubuntu	esm-infra/bionic	*
Linux-oracle-5.4	Ubuntu	upstream	*
Linux-oracle-5.8	Ubuntu	esm-infra/focal	*
Linux-oracle-5.8	Ubuntu	focal	*
Linux-oracle-5.8	Ubuntu	upstream	*
Linux-oracle-6.14	Ubuntu	noble	*
Linux-oracle-6.14	Ubuntu	upstream	*
Linux-oracle-6.5	Ubuntu	jammy	*
Linux-oracle-6.5	Ubuntu	upstream	*
Linux-oracle-6.8	Ubuntu	jammy	*
Linux-oracle-6.8	Ubuntu	upstream	*
Linux-raspi	Ubuntu	esm-infra/focal	*
Linux-raspi	Ubuntu	focal	*
Linux-raspi	Ubuntu	jammy	*
Linux-raspi	Ubuntu	noble	*
Linux-raspi	Ubuntu	oracular	*
Linux-raspi	Ubuntu	plucky	*
Linux-raspi	Ubuntu	upstream	*
Linux-raspi-5.4	Ubuntu	bionic	*
Linux-raspi-5.4	Ubuntu	esm-infra/bionic	*
Linux-raspi-5.4	Ubuntu	upstream	*
Linux-raspi-realtime	Ubuntu	noble	*
Linux-raspi-realtime	Ubuntu	realtime/noble	*
Linux-raspi-realtime	Ubuntu	upstream	*
Linux-raspi2	Ubuntu	bionic	*
Linux-raspi2	Ubuntu	esm-infra/focal	*
Linux-raspi2	Ubuntu	focal	*
Linux-raspi2	Ubuntu	upstream	*
Linux-raspi2	Ubuntu	xenial	*
Linux-realtime	Ubuntu	jammy	*
Linux-realtime	Ubuntu	noble	*
Linux-realtime	Ubuntu	oracular	*
Linux-realtime	Ubuntu	plucky	*
Linux-realtime	Ubuntu	realtime/jammy	*
Linux-realtime	Ubuntu	realtime/noble	*
Linux-realtime	Ubuntu	upstream	*
Linux-realtime-6.14	Ubuntu	realtime/noble	*
Linux-realtime-6.14	Ubuntu	upstream	*
Linux-realtime-6.8	Ubuntu	realtime/jammy	*
Linux-realtime-6.8	Ubuntu	upstream	*
Linux-riscv	Ubuntu	esm-infra/focal	*
Linux-riscv	Ubuntu	focal	*
Linux-riscv	Ubuntu	jammy	*
Linux-riscv	Ubuntu	noble	*
Linux-riscv	Ubuntu	oracular	*
Linux-riscv	Ubuntu	plucky	*
Linux-riscv	Ubuntu	upstream	*
Linux-riscv-5.11	Ubuntu	esm-infra/focal	*
Linux-riscv-5.11	Ubuntu	focal	*
Linux-riscv-5.11	Ubuntu	upstream	*
Linux-riscv-5.15	Ubuntu	esm-infra/focal	*
Linux-riscv-5.15	Ubuntu	focal	*
Linux-riscv-5.15	Ubuntu	upstream	*
Linux-riscv-5.19	Ubuntu	jammy	*
Linux-riscv-5.19	Ubuntu	upstream	*
Linux-riscv-5.8	Ubuntu	esm-infra/focal	*
Linux-riscv-5.8	Ubuntu	focal	*
Linux-riscv-5.8	Ubuntu	upstream	*
Linux-riscv-6.14	Ubuntu	noble	*
Linux-riscv-6.14	Ubuntu	upstream	*
Linux-riscv-6.5	Ubuntu	jammy	*
Linux-riscv-6.5	Ubuntu	upstream	*
Linux-riscv-6.8	Ubuntu	jammy	*
Linux-riscv-6.8	Ubuntu	upstream	*
Linux-starfive-5.19	Ubuntu	jammy	*
Linux-starfive-5.19	Ubuntu	upstream	*
Linux-starfive-6.2	Ubuntu	jammy	*
Linux-starfive-6.2	Ubuntu	upstream	*
Linux-starfive-6.5	Ubuntu	jammy	*
Linux-starfive-6.5	Ubuntu	upstream	*
Linux-xilinx	Ubuntu	noble	*
Linux-xilinx	Ubuntu	upstream	*
Linux-xilinx-zynqmp	Ubuntu	esm-infra/focal	*
Linux-xilinx-zynqmp	Ubuntu	focal	*
Linux-xilinx-zynqmp	Ubuntu	jammy	*
Linux-xilinx-zynqmp	Ubuntu	upstream	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-37890
CWE	https://cwe.mitre.org/data/definitions/416.html

Use After Free

Weakness

Affected Software

Potential Mitigations

References