CVE-2025-71068

Summary

In the Linux kernel, the following vulnerability has been resolved:

svcrdma: bound check rq_pages index in inline path

svc_rdma_copy_inline_range indexed rqstp->rq_pages[rc_curpage] without verifying rc_curpage stays within the allocated page array. Add guards before the first use and after advancing to a new page.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd7cc73972661be4a02a1b09f1d9b3283c6c05154 < a22316f5e9a29e4b92030bd8fb9435fe0eb1d5c9affected
LinuxLinuxd7cc73972661be4a02a1b09f1d9b3283c6c05154 < 7ba826aae1d43212f3baa53a2175ad949e21926eaffected
LinuxLinuxd7cc73972661be4a02a1b09f1d9b3283c6c05154 < 5f140b525180c628db8fa6c897f138194a2de417affected
LinuxLinuxd7cc73972661be4a02a1b09f1d9b3283c6c05154 < da1ccfc4c452541584a4eae89e337cfa21be6d5aaffected
LinuxLinuxd7cc73972661be4a02a1b09f1d9b3283c6c05154 < d1bea0ce35b6095544ee82bb54156fc62c067e58affected
LinuxLinux5.11affected
LinuxLinux0 < 5.11unaffected
LinuxLinux5.15.198 <= 5.15.*unaffected
LinuxLinux6.6.120 <= 6.6.*unaffected
LinuxLinux6.12.64 <= 6.12.*unaffected
LinuxLinux6.18.3 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References