CVE-2025-38264
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
nvme-tcp: sanitize request list handling
Validate the request in nvme_tcp_handle_r2t() to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 3f2304f8c6d6ed97849057bd16fee99e434ca796 < 78a4adcd3fedb0728436e8094848ebf4c6bae006 | affected |
| Linux | Linux | 3f2304f8c6d6ed97849057bd16fee99e434ca796 < f054ea62598197714a6ca7b3b387a027308f8b13 | affected |
| Linux | Linux | 3f2304f8c6d6ed97849057bd16fee99e434ca796 < 0bf04c874fcb1ae46a863034296e4b33d8fbd66c | affected |
| Linux | Linux | 5.0 | affected |
| Linux | Linux | 0 < 5.0 | unaffected |
| Linux | Linux | 6.12.36 <= 6.12.* | unaffected |
| Linux | Linux | 6.15.5 <= 6.15.* | unaffected |
| Linux | Linux | 6.16 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/78a4adcd3fedb0728436e8094848ebf4c6bae006
- https://git.kernel.org/stable/c/f054ea62598197714a6ca7b3b387a027308f8b13
- https://git.kernel.org/stable/c/0bf04c874fcb1ae46a863034296e4b33d8fbd66c
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.