CVE-2025-71068

In the Linux kernel, the following vulnerability has been resolved: svcrdma: bound check rq_pages index in inline path svc_rdma_copy_inline_range indexed rqstp->rq_pages[rc_curpage] without verifying rc_curpage stays within the allocated page array. Add guards before the first use and after advancing to a new page.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/5f140b525180c628db8fa6c897f138194a2de417	Patch
https://git.kernel.org/stable/c/7ba826aae1d43212f3baa53a2175ad949e21926e	Patch
https://git.kernel.org/stable/c/a22316f5e9a29e4b92030bd8fb9435fe0eb1d5c9	Patch
https://git.kernel.org/stable/c/d1bea0ce35b6095544ee82bb54156fc62c067e58	Patch
https://git.kernel.org/stable/c/da1ccfc4c452541584a4eae89e337cfa21be6d5a	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc5::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc6::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc7::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc8::::::

History

03 Apr 2026, 16:30

Type	Values Removed	Values Added
CPE		cpe:2.3:o:linux:linux_kernel:6.19:rc1:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.19:rc8:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc3:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc4:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc6:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc5:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc7::::::
Summary		(es) En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta: svcrdma: comprobación de límites del índice rq_pages en la ruta en línea svc_rdma_copy_inline_range indexó rqstp->rq_pages[rc_curpage] sin verificar que rc_curpage se mantuviera dentro del array de páginas asignado. Añadir protecciones antes del primer uso y después de avanzar a una nueva página.
First Time		Linux Linux linux Kernel
CWE		NVD-CWE-noinfo
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
References	~~() https://git.kernel.org/stable/c/5f140b525180c628db8fa6c897f138194a2de417 -~~	() https://git.kernel.org/stable/c/5f140b525180c628db8fa6c897f138194a2de417 - Patch
References	~~() https://git.kernel.org/stable/c/7ba826aae1d43212f3baa53a2175ad949e21926e -~~	() https://git.kernel.org/stable/c/7ba826aae1d43212f3baa53a2175ad949e21926e - Patch
References	~~() https://git.kernel.org/stable/c/a22316f5e9a29e4b92030bd8fb9435fe0eb1d5c9 -~~	() https://git.kernel.org/stable/c/a22316f5e9a29e4b92030bd8fb9435fe0eb1d5c9 - Patch
References	~~() https://git.kernel.org/stable/c/d1bea0ce35b6095544ee82bb54156fc62c067e58 -~~	() https://git.kernel.org/stable/c/d1bea0ce35b6095544ee82bb54156fc62c067e58 - Patch
References	~~() https://git.kernel.org/stable/c/da1ccfc4c452541584a4eae89e337cfa21be6d5a -~~	() https://git.kernel.org/stable/c/da1ccfc4c452541584a4eae89e337cfa21be6d5a - Patch

19 Jan 2026, 13:16

Type	Values Removed	Values Added
References		() https://git.kernel.org/stable/c/a22316f5e9a29e4b92030bd8fb9435fe0eb1d5c9 -

13 Jan 2026, 16:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-01-13 16:16

Updated : 2026-04-03 16:30

NVD link : CVE-2025-71068

Mitre link : CVE-2025-71068

CVE.ORG link : CVE-2025-71068

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

7.8 /10