[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2025-38553":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":39,"aliases":40,"duplicate_of":9,"upstream":41,"downstream":42,"duplicates":161,"related":162,"reserved_at":9,"published_at":187,"modified_at":188,"state":189,"summary":190,"references_raw":199,"kevs":248,"epss":249,"epss_history":252,"metrics":521,"affected":527},"CVE-2025-38553","In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: Restrict conditions for adding duplicating netems to qdisc tree\n\nnetem_enqueue's duplication prevention logic breaks when a netem\nresides in a qdisc tree with other netems - this can lead to a\nsoft lockup and OOM loop in netem_dequeue, as seen in [1].\nEnsure that a duplicating netem cannot exist in a tree with other\nnetems.\n\nPrevious approaches suggested in discussions in chronological order:\n\n1) Track duplication status or ttl in the sk_buff struct. Considered\ntoo specific a use case to extend such a struct, though this would\nbe a resilient fix and address other previous and potential future\nDOS bugs like the one described in loopy fun [2].\n\n2) Restrict netem_enqueue recursion depth like in act_mirred with a\nper cpu variable. However, netem_dequeue can call enqueue on its\nchild, and the depth restriction could be bypassed if the child is a\nnetem.\n\n3) Use the same approach as in 2, but add metadata in netem_skb_cb\nto handle the netem_dequeue case and track a packet's involvement\nin duplication. This is an overly complex approach, and Jamal\nnotes that the skb cb can be overwritten to circumvent this\nsafeguard.\n\n4) Prevent the addition of a netem to a qdisc tree if its ancestral\npath contains a netem. However, filters and actions can cause a\npacket to change paths when re-enqueued to the root from netem\nduplication, leading us to the current solution: prevent a\nduplicating netem from inhabiting the same tree as other netems.\n\n[1] https://lore.kernel.org/netdev/8DuRWwfqjoRDLDmBMlIfbrsZg9Gx50DHJc1ilxsEBNe2D6NMoigR_eIRIG0LOjMc3r10nUUZtArXx4oZBIdUfZQrwjcQhdinnMis_0G7VEk=@willsroot.io/\n[2] https://lwn.net/Articles/719297/",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-667","Improper Locking","The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.","weakness","Draft","Class",[19,31,35],{"id":20,"name":21,"techniques":22},"CAPEC-25","Forced Deadlock",[23],{"id":24,"name":25,"tactics":26,"countermeasures":30},"T1499.004","Application or System Exploitation",[27],{"id":28,"name":29},"TA0105","Impact",[],{"id":32,"name":33,"techniques":34},"CAPEC-26","Leveraging Race Conditions",[],{"id":36,"name":37,"techniques":38},"CAPEC-27","Leveraging Race Conditions via Symbolic Links",[],[],[],[],[43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85,87,89,91,93,95,97,99,101,103,105,107,109,111,113,115,117,119,121,123,125,127,129,131,133,135,137,139,141,143,145,147,149,151,153,155,157,159],{"_key":44},"SUSE-SU-2025:03613-1",{"_key":46},"SUSE-SU-2025:03614-1",{"_key":48},"SUSE-SU-2025:03615-1",{"_key":50},"SUSE-SU-2025:03626-1",{"_key":52},"SUSE-SU-2025:03628-1",{"_key":54},"SUSE-SU-2025:3716-1",{"_key":56},"SUSE-SU-2025:3761-1",{"_key":58},"SUSE-SU-2025:03301-1",{"_key":60},"DLA-4327-1",{"_key":62},"DLA-4328-1",{"_key":64},"SUSE-SU-2025:03290-1",{"_key":66},"SUSE-SU-2025:03382-1",{"_key":68},"SUSE-SU-2025:03602-1",{"_key":70},"SUSE-SU-2025:03633-1",{"_key":72},"SUSE-SU-2025:20653-1",{"_key":74},"SUSE-SU-2025:20669-1",{"_key":76},"SUSE-SU-2025:20739-1",{"_key":78},"SUSE-SU-2025:20756-1",{"_key":80},"SUSE-SU-2025:21074-1",{"_key":82},"SUSE-SU-2025:21139-1",{"_key":84},"SUSE-SU-2025:21179-1",{"_key":86},"SUSE-SU-2025:03272-1",{"_key":88},"SUSE-SU-2025:03634-1",{"_key":90},"OPENSUSE-SU-2025:20081-1",{"_key":92},"MGASA-2025-0234",{"_key":94},"MGASA-2025-0235",{"_key":96},"DEBIAN-CVE-2025-38553",{"_key":98},"USN-7909-5",{"_key":100},"USN-7933-1",{"_key":102},"USN-7938-1",{"_key":104},"USN-7934-1",{"_key":106},"USN-8028-1",{"_key":108},"USN-8028-2",{"_key":110},"USN-8028-3",{"_key":112},"USN-8028-4",{"_key":114},"USN-8028-5",{"_key":116},"USN-8028-6",{"_key":118},"USN-8028-7",{"_key":120},"USN-8028-8",{"_key":122},"USN-8031-1",{"_key":124},"USN-8031-2",{"_key":126},"USN-8031-3",{"_key":128},"USN-8052-1",{"_key":130},"USN-8052-2",{"_key":132},"USN-8074-1",{"_key":134},"USN-8074-2",{"_key":136},"USN-8126-1",{"_key":138},"UBUNTU-CVE-2025-38553",{"_key":140},"USN-7879-1",{"_key":142},"USN-7879-2",{"_key":144},"USN-7879-3",{"_key":146},"USN-7879-4",{"_key":148},"USN-7880-1",{"_key":150},"USN-7909-1",{"_key":152},"USN-7909-2",{"_key":154},"USN-7909-3",{"_key":156},"USN-7909-4",{"_key":158},"USN-7910-1",{"_key":160},"USN-7910-2",[],[163,164,165,166,167,168,169,170,171,172,173,174,175,176,177,178,179,180,181,182,183,184,185,186],{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":64},{"_key":66},{"_key":68},{"_key":70},{"_key":72},{"_key":74},{"_key":76},{"_key":78},{"_key":80},{"_key":82},{"_key":84},{"_key":86},{"_key":88},{"_key":90},{"_key":92},{"_key":94},"2025-08-19T06:06:53.204Z","2026-05-11T21:30:19.100Z","Analyzed",{"cisa_kev":191,"cisa_ransomware":191,"cisa_vendor":9,"epss_severity":192,"epss_score":193,"severity":194,"severity_score":195,"severity_version":196,"severity_source":197,"severity_vector":198,"severity_status":189},false,"low",0.00017,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[200,206,210,214,218,222,226,230,234,238,244],{"url":201,"sources":202,"tags":204},"https://git.kernel.org/stable/c/ad340a4b4adb855b18b3666f26ad65c8968e2deb",[203,197],"cve.org",[205],"Patch",{"url":207,"sources":208,"tags":209},"https://git.kernel.org/stable/c/f088b6ebe8797a3f948d2cae47f34bfb45cc6522",[203,197],[205],{"url":211,"sources":212,"tags":213},"https://git.kernel.org/stable/c/cab2809944989889f88a1a8b5cff1c78460c72cb",[203,197],[205],{"url":215,"sources":216,"tags":217},"https://git.kernel.org/stable/c/325f5ec67cc0a77f2d0d453445b9857f1cd06c76",[203,197],[205],{"url":219,"sources":220,"tags":221},"https://git.kernel.org/stable/c/103c4e27ec9f5fe53022e46e976abf52c7221baf",[203,197],[205],{"url":223,"sources":224,"tags":225},"https://git.kernel.org/stable/c/795cb393e38977aa991e70a9363da0ee734b2114",[203,197],[205],{"url":227,"sources":228,"tags":229},"https://git.kernel.org/stable/c/250f8796006c0f2bc638ce545f601d49ae8d528b",[203,197],[205],{"url":231,"sources":232,"tags":233},"https://git.kernel.org/stable/c/09317dfb681ac5a96fc69bea0c54441cf91b8270",[203,197],[205],{"url":235,"sources":236,"tags":237},"https://git.kernel.org/stable/c/ec8e0e3d7adef940cdf9475e2352c0680189d14e",[203,197],[205],{"url":239,"sources":240,"tags":241},"https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html",[203,197],[242,243],"Third Party Advisory","Mailing List",{"url":245,"sources":246,"tags":247},"https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html",[203,197],[242,243],[],{"date":250,"score":193,"percentile":251},"2026-06-03",0.04433,[253,257,260,263,266,269,272,275,278,281,284,287,290,293,296,299,302,305,308,310,313,316,319,322,325,328,331,334,337,340,343,346,349,351,354,357,360,363,366,369,372,375,378,381,384,387,391,394,397,400,403,406,409,412,415,418,421,424,427,430,433,436,439,441,444,447,450,453,456,459,462,465,468,472,475,477,480,483,486,488,490,493,496,499,502,506,509,512,515,518],{"date":254,"score":255,"percentile":256},"2025-11-04",0.00049,0.15034,{"date":258,"score":255,"percentile":259},"2025-11-05",0.15066,{"date":261,"score":255,"percentile":262},"2025-11-06",0.15163,{"date":264,"score":255,"percentile":265},"2025-11-07",0.15186,{"date":267,"score":255,"percentile":268},"2025-11-08",0.15195,{"date":270,"score":255,"percentile":271},"2025-11-09",0.15171,{"date":273,"score":255,"percentile":274},"2025-11-10",0.1513,{"date":276,"score":255,"percentile":277},"2025-11-11",0.15152,{"date":279,"score":255,"percentile":280},"2025-11-12",0.15196,{"date":282,"score":255,"percentile":283},"2025-11-13",0.15221,{"date":285,"score":255,"percentile":286},"2025-11-14",0.15222,{"date":288,"score":255,"percentile":289},"2025-11-15",0.15182,{"date":291,"score":255,"percentile":292},"2025-11-16",0.15165,{"date":294,"score":255,"percentile":295},"2025-11-17",0.15124,{"date":297,"score":255,"percentile":298},"2025-11-18",0.1066,{"date":300,"score":255,"percentile":301},"2025-11-19",0.10678,{"date":303,"score":255,"percentile":304},"2025-11-20",0.10705,{"date":306,"score":255,"percentile":307},"2025-11-21",0.15148,{"date":309,"score":255,"percentile":307},"2025-11-22",{"date":311,"score":255,"percentile":312},"2025-11-23",0.15145,{"date":314,"score":255,"percentile":315},"2025-11-24",0.15107,{"date":317,"score":255,"percentile":318},"2025-11-25",0.15101,{"date":320,"score":255,"percentile":321},"2025-11-26",0.15089,{"date":323,"score":255,"percentile":324},"2025-11-27",0.15098,{"date":326,"score":255,"percentile":327},"2025-11-28",0.15079,{"date":329,"score":255,"percentile":330},"2025-11-29",0.15057,{"date":332,"score":255,"percentile":333},"2025-11-30",0.15065,{"date":335,"score":255,"percentile":336},"2025-12-01",0.15103,{"date":338,"score":255,"percentile":339},"2025-12-02",0.15116,{"date":341,"score":255,"percentile":342},"2025-12-03",0.15142,{"date":344,"score":255,"percentile":345},"2025-12-04",0.151,{"date":347,"score":255,"percentile":348},"2025-12-05",0.15164,{"date":350,"score":255,"percentile":289},"2025-12-06",{"date":352,"score":255,"percentile":353},"2025-12-07",0.15158,{"date":355,"score":255,"percentile":356},"2025-12-08",0.15173,{"date":358,"score":255,"percentile":359},"2025-12-09",0.1523,{"date":361,"score":255,"percentile":362},"2025-12-10",0.15293,{"date":364,"score":255,"percentile":365},"2025-12-11",0.15324,{"date":367,"score":255,"percentile":368},"2025-12-12",0.15378,{"date":370,"score":255,"percentile":371},"2025-12-13",0.15377,{"date":373,"score":255,"percentile":374},"2025-12-14",0.15337,{"date":376,"score":255,"percentile":377},"2025-12-15",0.15307,{"date":379,"score":255,"percentile":380},"2025-12-16",0.15325,{"date":382,"score":255,"percentile":383},"2025-12-17",0.15418,{"date":385,"score":255,"percentile":386},"2025-12-18",0.15475,{"date":388,"score":389,"percentile":390},"2025-12-19",0.00064,0.20122,{"date":392,"score":389,"percentile":393},"2025-12-20",0.20092,{"date":395,"score":389,"percentile":396},"2025-12-21",0.20042,{"date":398,"score":389,"percentile":399},"2025-12-22",0.20004,{"date":401,"score":389,"percentile":402},"2025-12-23",0.20006,{"date":404,"score":389,"percentile":405},"2025-12-24",0.20043,{"date":407,"score":389,"percentile":408},"2025-12-25",0.20125,{"date":410,"score":389,"percentile":411},"2025-12-26",0.20118,{"date":413,"score":389,"percentile":414},"2025-12-27",0.20114,{"date":416,"score":389,"percentile":417},"2025-12-28",0.20075,{"date":419,"score":389,"percentile":420},"2025-12-29",0.20028,{"date":422,"score":389,"percentile":423},"2025-12-30",0.20016,{"date":425,"score":389,"percentile":426},"2025-12-31",0.20072,{"date":428,"score":389,"percentile":429},"2026-01-01",0.20169,{"date":431,"score":389,"percentile":432},"2026-01-02",0.20172,{"date":434,"score":389,"percentile":435},"2026-01-03",0.20153,{"date":437,"score":389,"percentile":438},"2026-01-04",0.20063,{"date":440,"score":389,"percentile":396},"2026-01-05",{"date":442,"score":389,"percentile":443},"2026-01-06",0.20055,{"date":445,"score":389,"percentile":446},"2026-01-07",0.20082,{"date":448,"score":389,"percentile":449},"2026-01-08",0.20127,{"date":451,"score":193,"percentile":452},"2026-01-09",0.03184,{"date":454,"score":193,"percentile":455},"2026-01-10",0.03189,{"date":457,"score":193,"percentile":458},"2026-01-11",0.03173,{"date":460,"score":193,"percentile":461},"2026-01-12",0.03137,{"date":463,"score":193,"percentile":464},"2026-01-13",0.03131,{"date":466,"score":193,"percentile":467},"2026-01-14",0.03145,{"date":469,"score":470,"percentile":471},"2026-01-15",0.00008,0.0054,{"date":473,"score":470,"percentile":474},"2026-01-16",0.00506,{"date":476,"score":470,"percentile":474},"2026-01-17",{"date":478,"score":470,"percentile":479},"2026-01-18",0.00508,{"date":481,"score":470,"percentile":482},"2026-01-19",0.00505,{"date":484,"score":470,"percentile":485},"2026-01-20",0.00504,{"date":487,"score":470,"percentile":485},"2026-01-21",{"date":489,"score":470,"percentile":485},"2026-01-22",{"date":491,"score":470,"percentile":492},"2026-01-23",0.00509,{"date":494,"score":470,"percentile":495},"2026-01-24",0.0051,{"date":497,"score":470,"percentile":498},"2026-01-25",0.00513,{"date":500,"score":470,"percentile":501},"2026-01-26",0.00514,{"date":503,"score":504,"percentile":505},"2026-01-27",0.00011,0.01034,{"date":507,"score":504,"percentile":508},"2026-01-28",0.01032,{"date":510,"score":504,"percentile":511},"2026-01-29",0.01036,{"date":513,"score":504,"percentile":514},"2026-01-30",0.01038,{"date":516,"score":504,"percentile":517},"2026-01-31",0.01046,{"date":519,"score":504,"percentile":520},"2026-02-01",0.01064,[522],{"source":197,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":523,"cvss_v4_0":9},{"baseScore":195,"baseSeverity":524,"vectorString":198,"impactScore":525,"exploitabilityScore":526},"MEDIUM",6,4.6,[528,537,575],{"ecosystem":9,"name":529,"vendor":530,"product":531,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":533},"debian linux","debian","debian_linux","o",[534],{"version":535,"is_range":191,"range_type":536,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0","cpe",{"ecosystem":9,"name":538,"vendor":539,"product":539,"cpe_part":540,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":541},"Linux","linux","a",[542,549,552,555,558,561,564,567,570,573],{"version":543,"is_range":544,"range_type":203,"version_start":545,"version_start_type":546,"version_end":547,"version_end_type":548,"fixed_in":9},">= 0afb51e72855971dba83b3c6b70c547c2d1161fd, \u003C ad340a4b4adb855b18b3666f26ad65c8968e2deb",true,"0afb51e72855971dba83b3c6b70c547c2d1161fd","including","ad340a4b4adb855b18b3666f26ad65c8968e2deb","excluding",{"version":550,"is_range":544,"range_type":203,"version_start":545,"version_start_type":546,"version_end":551,"version_end_type":548,"fixed_in":9},">= 0afb51e72855971dba83b3c6b70c547c2d1161fd, \u003C f088b6ebe8797a3f948d2cae47f34bfb45cc6522","f088b6ebe8797a3f948d2cae47f34bfb45cc6522",{"version":553,"is_range":544,"range_type":203,"version_start":545,"version_start_type":546,"version_end":554,"version_end_type":548,"fixed_in":9},">= 0afb51e72855971dba83b3c6b70c547c2d1161fd, \u003C cab2809944989889f88a1a8b5cff1c78460c72cb","cab2809944989889f88a1a8b5cff1c78460c72cb",{"version":556,"is_range":544,"range_type":203,"version_start":545,"version_start_type":546,"version_end":557,"version_end_type":548,"fixed_in":9},">= 0afb51e72855971dba83b3c6b70c547c2d1161fd, \u003C 325f5ec67cc0a77f2d0d453445b9857f1cd06c76","325f5ec67cc0a77f2d0d453445b9857f1cd06c76",{"version":559,"is_range":544,"range_type":203,"version_start":545,"version_start_type":546,"version_end":560,"version_end_type":548,"fixed_in":9},">= 0afb51e72855971dba83b3c6b70c547c2d1161fd, \u003C 103c4e27ec9f5fe53022e46e976abf52c7221baf","103c4e27ec9f5fe53022e46e976abf52c7221baf",{"version":562,"is_range":544,"range_type":203,"version_start":545,"version_start_type":546,"version_end":563,"version_end_type":548,"fixed_in":9},">= 0afb51e72855971dba83b3c6b70c547c2d1161fd, \u003C 795cb393e38977aa991e70a9363da0ee734b2114","795cb393e38977aa991e70a9363da0ee734b2114",{"version":565,"is_range":544,"range_type":203,"version_start":545,"version_start_type":546,"version_end":566,"version_end_type":548,"fixed_in":9},">= 0afb51e72855971dba83b3c6b70c547c2d1161fd, \u003C 250f8796006c0f2bc638ce545f601d49ae8d528b","250f8796006c0f2bc638ce545f601d49ae8d528b",{"version":568,"is_range":544,"range_type":203,"version_start":545,"version_start_type":546,"version_end":569,"version_end_type":548,"fixed_in":9},">= 0afb51e72855971dba83b3c6b70c547c2d1161fd, \u003C 09317dfb681ac5a96fc69bea0c54441cf91b8270","09317dfb681ac5a96fc69bea0c54441cf91b8270",{"version":571,"is_range":544,"range_type":203,"version_start":545,"version_start_type":546,"version_end":572,"version_end_type":548,"fixed_in":9},">= 0afb51e72855971dba83b3c6b70c547c2d1161fd, \u003C ec8e0e3d7adef940cdf9475e2352c0680189d14e","ec8e0e3d7adef940cdf9475e2352c0680189d14e",{"version":574,"is_range":191,"range_type":203,"version_start":574,"version_start_type":546,"version_end":574,"version_end_type":546,"fixed_in":9},"2.6.12",{"ecosystem":9,"name":576,"vendor":539,"product":577,"cpe_part":532,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":578},"linux kernel","linux_kernel",[579,583,587,591,595,599,603,607,611],{"version":580,"is_range":544,"range_type":536,"version_start":581,"version_start_type":546,"version_end":582,"version_end_type":548,"fixed_in":9},"gte2.6.13_lt5.4.297","2.6.13","5.4.297",{"version":584,"is_range":544,"range_type":536,"version_start":585,"version_start_type":546,"version_end":586,"version_end_type":548,"fixed_in":9},"gte5.5_lt5.10.241","5.5","5.10.241",{"version":588,"is_range":544,"range_type":536,"version_start":589,"version_start_type":546,"version_end":590,"version_end_type":548,"fixed_in":9},"gte5.11_lt5.15.190","5.11","5.15.190",{"version":592,"is_range":544,"range_type":536,"version_start":593,"version_start_type":546,"version_end":594,"version_end_type":548,"fixed_in":9},"gte5.16_lt6.1.148","5.16","6.1.148",{"version":596,"is_range":544,"range_type":536,"version_start":597,"version_start_type":546,"version_end":598,"version_end_type":548,"fixed_in":9},"gte6.2_lt6.6.102","6.2","6.6.102",{"version":600,"is_range":544,"range_type":536,"version_start":601,"version_start_type":546,"version_end":602,"version_end_type":548,"fixed_in":9},"gte6.7_lt6.12.42","6.7","6.12.42",{"version":604,"is_range":544,"range_type":536,"version_start":605,"version_start_type":546,"version_end":606,"version_end_type":548,"fixed_in":9},"gte6.13_lt6.15.10","6.13","6.15.10",{"version":608,"is_range":544,"range_type":536,"version_start":609,"version_start_type":546,"version_end":610,"version_end_type":548,"fixed_in":9},"gte6.16_lt6.16.1","6.16","6.16.1",{"version":574,"is_range":191,"range_type":536,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]