CVE-2025-68811

Summary

In the Linux kernel, the following vulnerability has been resolved:

svcrdma: use rc_pageoff for memcpy byte offset

svc_rdma_copy_inline_range added rc_curpage (page index) to the page base instead of the byte offset rc_pageoff. Use rc_pageoff so copies land within the current page.

Found by ZeroPath (https://zeropath.com)

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8e122582680c6f8acd686a5a2af9c0e46fe90f2d < e8623e9c451e23d84b870811f42fd872b4089ef6affected
LinuxLinux8e122582680c6f8acd686a5a2af9c0e46fe90f2d < 2a77c8dd49bccf0ca232be7c836cec1209abb8daaffected
LinuxLinux8e122582680c6f8acd686a5a2af9c0e46fe90f2d < a8ee9099f30654917aa68f55d707b5627e1dbf77affected
LinuxLinux6.8affected
LinuxLinux0 < 6.8unaffected
LinuxLinux6.12.64 <= 6.12.*unaffected
LinuxLinux6.18.3 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References