ALT Linux Bugzilla – Full Text Bug Listing
| Summary: | Отключить CONFIG_NET_SCH_QFQ | ||
|---|---|---|---|
| Product: | Sisyphus | Reporter: | Gremlin from Kremlin <gremlin> |
| Component: | kernel-image-6.18 | Assignee: | Vitaly Chikunov <vt> |
| Status: | NEW --- | QA Contact: | qa-sisyphus |
| Severity: | critical | ||
| Priority: | P5 | CC: | antohami, kernelbot, placeholder |
| Version: | unstable | ||
| Hardware: | x86_64 | ||
| OS: | Linux | ||
|
Description
Gremlin from Kremlin
2026-02-19 15:16:03 MSK
(Ответ для Gremlin from Kremlin на комментарий #0) > Модуль уязвим, исправлений нет и не предвидится (он был написан в качестве > демонстрации к научной работе). > Актуально для всех ядер и всех архитектур. Интересно, что он включен везде кроме rhel, а там он отключен 2020-07-28 без объяснений.
suse | config/arm64/default:CONFIG_NET_SCH_QFQ=m
suse | config/i386/pae:CONFIG_NET_SCH_QFQ=m
suse | config/riscv64/default:CONFIG_NET_SCH_QFQ=m
suse | config/x86_64/default:CONFIG_NET_SCH_QFQ=m
redhat/kernel-ark | redhat/configs/fedora/generic/CONFIG_NET_SCH_QFQ:CONFIG_NET_SCH_QFQ=m
redhat/kernel-ark | redhat/configs/rhel/generic/CONFIG_NET_SCH_QFQ:# CONFIG_NET_SCH_QFQ is not set
redhat/kernel-ark | redhat/kernel.changelog-10.99:- redhat: ark: disable CONFIG_NET_SCH_QFQ (Davide Caratti)
redhat/kernel-ark | redhat/kernel.changelog-9.99:- redhat: ark: disable CONFIG_NET_SCH_QFQ (Davide Caratti)
ubuntu/linux | debian.master/config/annotations:CONFIG_NET_SCH_QFQ policy<{'amd64': 'm', 'arm64': 'm', 'armhf': 'm', 'ppc64el': 'm', 'riscv64': 'm', 's390x': 'm'}>
debian/linux | debian/config/config:CONFIG_NET_SCH_QFQ=m
clearlinux | config:CONFIG_NET_SCH_QFQ=m
archlinux | config.x86_64:CONFIG_NET_SCH_QFQ=m
openmandriva | networking.fragment:CONFIG_NET_SCH_QFQ=m
rosa | kernel-arm64.config:CONFIG_NET_SCH_QFQ=m
rosa | kernel-i686.config:CONFIG_NET_SCH_QFQ=m
rosa | kernel-loongarch.config:# CONFIG_NET_SCH_QFQ is not set
rosa | kernel-riscv64.config:CONFIG_NET_SCH_QFQ=m
rosa | kernel-x86_64.config:CONFIG_NET_SCH_QFQ=m
azurelinux | SPECS-EXTENDED/kernel-rt/config:CONFIG_NET_SCH_QFQ=m
azurelinux | SPECS/kernel-64k/config_aarch64:CONFIG_NET_SCH_QFQ=m
azurelinux | SPECS/kernel-mshv/config:CONFIG_NET_SCH_QFQ=m
azurelinux | SPECS/kernel-uvm/config:# CONFIG_NET_SCH_QFQ is not set
azurelinux | SPECS/kernel/config:CONFIG_NET_SCH_QFQ=m
azurelinux | SPECS/kernel/config_aarch64:CONFIG_NET_SCH_QFQ=m
deepin | arch/x86/configs/deepin_x86_desktop_defconfig:CONFIG_NET_SCH_QFQ=m
bytedance | config.aarch64:CONFIG_NET_SCH_QFQ=m
bytedance | config.aarch64-64k:CONFIG_NET_SCH_QFQ=m
bytedance | config.x86_64:CONFIG_NET_SCH_QFQ=m
2. Что за уязвимость? RCE? 3. Код qfq не заброшен: d837fbee9245 2026-01-19 12:06 Jamal Hadi Salim net/sched: qfq: Use cl_is_active to determine whether class is active in qfq_rm_from_ag 3879cffd9d07 2026-01-13 19:36 Eric Dumazet net/sched: sch_qfq: do not free existing class in qfq_change_class() c1d73b148023 2026-01-08 08:22 Xiang Mei net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset cf074eca0065 2025-07-22 11:48 Xiang Mei net/sched: sch_qfq: Avoid triggering might_sleep in atomic context in qfq_delete_class 5e28d5a3f774 2025-07-13 00:09 Xiang Mei net/sched: sch_qfq: Fix race condition on qfq_aggregate dd831ac8221e 2025-07-10 11:08 Xiang Mei net/sched: sch_qfq: Fix null-deref in agg_dequeue f139f37dcdf3 2025-04-28 15:55 Victor Nogueira net_sched: qfq: Fix double list add in class with netem as child qdisc ... Значит пользователи есть. |
