CVE-2025-38310
seg6: Fix validation of nexthop addresses
References
Notes
carnil> Introduced in d1df6fd8a1d2 ("ipv6: sr: define core operations for seg6local
carnil> lightweight tunnel"). Vulnerable versions: 4.14.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.16-rc1) [7632fedb266d93ed0ed9f487133e6c6314a9b2d1]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.15-upstream-stable |
released (6.15.3) [cd4cd09810211fa23609c5c1018352e9e1cd8e5a]
|
| 6.12-upstream-stable |
released (6.12.34) [d5d9fd13bc19a3f9f2a951c5b6e934d84205789e]
|
| 6.6-upstream-stable |
released (6.6.94) [d2507aeea45b3c5aa24d5daae0cf3db76895c0b7]
|
| 6.1-upstream-stable |
released (6.1.142) [cef33a86bcb04ecf4dc10c56f6c42ee9d1c54bac]
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.12.35-1)
|
| 6.12-trixie-security |
N/A "Fixed before branching point"
|
| 6.1-bookworm-security |
released (6.1.147-1)
|
| 5.10-bullseye-security |
needed
|
