Security tracker / CVE-2025-21650

CVE-2025-21650

net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds issue

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in 939ccd107ffc ("net: hns3: move dump regs function to a separate
 carnil> file"). Vulnerable versions: 6.4.16 6.5.3 6.6-rc1.

Bugs

Status

Branch	Status
upstream	released (6.13-rc7) [7997ddd46c54408bcba5e37fe18b4d832e45d4d4]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	released (6.12.10) [0575baa733fc4219f230aef22d5bc35d922f1e9a]
6.6-upstream-stable	needed
6.1-upstream-stable	N/A "Vulnerable code not present"
5.10-upstream-stable	N/A "Vulnerable code not present"
sid	released (6.12.10-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	N/A "Vulnerable code not present"
5.10-bullseye-security	N/A "Vulnerable code not present"