CVE-2025-39770
net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6_CSUM
References
Notes
carnil> Introduced in 04c20a9356f283da ("net: skip offload for NETIF_F_IPV6_CSUM if
carnil> ipv6 header contains extension"). Vulnerable versions: 4.19.323 5.4.285
carnil> 5.10.229 5.15.171 6.1.116 6.6.60 6.11.7 6.12.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.17-rc3) [864e3396976ef41de6cc7bc366276bf4e084fff2]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.16-upstream-stable |
released (6.16.4) [794ddbb7b63b6828c75967b9bcd43b086716e7a1]
|
| 6.12-upstream-stable |
released (6.12.44) [041e2f945f82fdbd6fff577b79c33469430297aa]
|
| 6.6-upstream-stable |
released (6.6.103) [2156d9e9f2e483c8c3906c0ea57ea312c1424235]
|
| 6.1-upstream-stable |
released (6.1.149) [a0478d7e888028f85fa7785ea838ce0ca09398e2]
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.16.5-1)
|
| 6.12-trixie-security |
released (6.12.48-1)
|
| 6.1-bookworm-security |
released (6.1.153-1)
|
| 5.10-bullseye-security |
needed
|
