CVE-2025-40252
net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end()
References
Notes
carnil> Introduced in 55482edc25f0 ("qede: Add slowpath/fastpath support and enable
carnil> hardware GRO"). Vulnerable versions: 4.6.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.18-rc7) [896f1a2493b59beb2b5ccdf990503dbb16cb2256]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
released (6.17.10) [e441db07f208184e0466abf44b389a81d70c340e]
|
| 6.12-upstream-stable |
released (6.12.60) [917a9d02182ac8b4f25eb47dc02f3ec679608c24]
|
| 6.6-upstream-stable |
released (6.6.118) [f0923011c1261b33a2ac1de349256d39cb750dd0]
|
| 6.1-upstream-stable |
released (6.1.159) [a778912b4a53587ea07d85526d152f85d109cbfe]
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.17.10-1)
|
| 6.12-trixie-security |
released (6.12.63-1)
|
| 6.1-bookworm-security |
released (6.1.159-1)
|
| 5.10-bullseye-security |
needed
|
