CVE-2025-0986

Summary

IBM PowerVM Hypervisor FW1050.00 through FW1050.30 and FW1060.00 through FW1060.20 could allow a local user, under certain Linux processor combability mode configurations, to cause undetected data loss or errors when performing gzip compression using HW acceleration.

Affected Software

VendorProductVersion RangeStatus
IBMPowerVM HypervisorFW1050.00 <= FW1050.30affected
IBMPowerVM HypervisorFW1060.00 <= FW1060.20affected

Weaknesses

  • CWE-409: CWE-409 Improper Handling of Highly Compressed Data (Data Amplification)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References