CVE-2025-37961
ipvs: fix uninit-value for saddr in do_output_route4
References
Notes
carnil> Introduced in 4754957f04f5 ("ipvs: do not use random local source address for
carnil> tunnels"). Vulnerable versions: 3.10.91 3.12.50 3.14.55 3.16.35 3.18.23 4.1.11
carnil> 4.2-rc5.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.15-rc6) [e34090d7214e0516eb8722aee295cb2507317c07]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.14-upstream-stable |
released (6.14.7) [a3a1b784791a3cbfc6e05c4d8a3c321ac5136e25]
|
| 6.12-upstream-stable |
released (6.12.29) [0160ac84fb03a0bd8dce8a42cb25bfaeedd110f4]
|
| 6.6-upstream-stable |
released (6.6.91) [adbc8cc1162951cb152ed7f147d5fbd35ce3e62f]
|
| 6.1-upstream-stable |
released (6.1.139) [7d0032112a0380d0b8d7c9005f621928a9b9fc76]
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.12.29-1)
|
| 6.12-trixie-security |
N/A "Fixed before branching point"
|
| 6.1-bookworm-security |
released (6.1.139-1)
|
| 5.10-bullseye-security |
needed
|
