In the Linux kernel, the following vulnerability has been resolved:
octeontx2-pf: fix "UBSAN: shift-out-of-bounds error"
This patch ensures that the RX ring size (rx_pending) is not
set below the permitted length. This avoids UBSAN
shift-out-of-bounds errors when users passes small or zero
ring sizes via ethtool -G.
References
Configurations
Configuration 1 (hide)
|
History
17 Jun 2026, 10:03
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
25 Mar 2026, 18:03
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Linux
Linux linux Kernel |
|
| References | () https://git.kernel.org/stable/c/442848e457f5a9f71a4e7e14d24d73dae278ebe3 - Patch | |
| References | () https://git.kernel.org/stable/c/4cc4cfe4d23c883120b6f3d41145edbaa281f2ab - Patch | |
| References | () https://git.kernel.org/stable/c/5d8dfa3abb9a845302e021cf9c92d941abbc011a - Patch | |
| References | () https://git.kernel.org/stable/c/658caf3b8aad65f8b8e102670ca4f68c7030f655 - Patch | |
| References | () https://git.kernel.org/stable/c/85f4b0c650d9f9db10bda8d3acfa1af83bf78cf7 - Patch | |
| References | () https://git.kernel.org/stable/c/aa743b0d98448282b2cb37356db8db2a48524624 - Patch | |
| References | () https://git.kernel.org/stable/c/b23a2e15589466a027c9baa3fb5813c9f6a6c6dc - Patch | |
| CWE | CWE-787 | |
| CPE | cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.19:rc8:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:5.6:-:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:6.19:rc7:*:*:*:*:*:* |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
19 Jan 2026, 13:16
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
14 Jan 2026, 15:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-01-14 15:16
Updated : 2026-06-17 10:03
NVD link : CVE-2025-71137
Mitre link : CVE-2025-71137
CVE.ORG link : CVE-2025-71137
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-787
Out-of-bounds Write
