CVE-2025-39972

Summary

In the Linux kernel, the following vulnerability has been resolved:

i40e: fix idx validation in i40e_validate_queue_map

Ensure idx is within range of active/initialized TCs when iterating over vf->ch[idx] in i40e_validate_queue_map().

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc27eac48160de72dee33d42b5a33cc7b8a2eb1f5 < b6cb93a7ff208f324c7ec581d72995f80e115e0eaffected
LinuxLinuxc27eac48160de72dee33d42b5a33cc7b8a2eb1f5 < 6f15a7b34fae75e745bdc2ec05e06ddfd0dd2f3caffected
LinuxLinuxc27eac48160de72dee33d42b5a33cc7b8a2eb1f5 < 34dfac0c904829967d500c51f216916ce1452957affected
LinuxLinuxc27eac48160de72dee33d42b5a33cc7b8a2eb1f5 < 4d5e804a9e19b639b18fd13664dbad3c03c79e61affected
LinuxLinuxc27eac48160de72dee33d42b5a33cc7b8a2eb1f5 < 50a1e2f50f6c22b93b94eb8d168a1be3c05bf5cdaffected
LinuxLinuxc27eac48160de72dee33d42b5a33cc7b8a2eb1f5 < cc4191e8ef40d2249c1b9a8617d22ec8a976b574affected
LinuxLinuxc27eac48160de72dee33d42b5a33cc7b8a2eb1f5 < d4e3eaaa3cb3af77836d806c89cd6ebf533a7320affected
LinuxLinuxc27eac48160de72dee33d42b5a33cc7b8a2eb1f5 < aa68d3c3ac8d1dcec40d52ae27e39f6d32207009affected
LinuxLinux4.17affected
LinuxLinux0 < 4.17unaffected
LinuxLinux5.4.300 <= 5.4.*unaffected
LinuxLinux5.10.245 <= 5.10.*unaffected
LinuxLinux5.15.194 <= 5.15.*unaffected
LinuxLinux6.1.155 <= 6.1.*unaffected
LinuxLinux6.6.109 <= 6.6.*unaffected
LinuxLinux6.12.50 <= 6.12.*unaffected
LinuxLinux6.16.10 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

References