CVE-2025-21993
Published: Apr 2, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic() When performing an iSCSI boot using IPv6, iscsistart still reads the /sys/firmware/ibft/ethernetX/subnet-mask entry. Since the IPv6 prefix length is 64, this causes the shift exponent to become negative, triggering a UBSAN warning. As the concept of a subnet mask does not apply to IPv6, the value is set to ~0 to suppress the warning message.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 138fe4e069798d9aa948a5402ff15e58f483ee4e - < a858cd58dea06cf85b142673deea8c5d87f11e70affected 138fe4e069798d9aa948a5402ff15e58f483ee4e - < f763c82db8166e28f45b7cc4a5398a7859665940affected 138fe4e069798d9aa948a5402ff15e58f483ee4e - < b388e185bfad32bfed6a97a6817f74ca00a4318faffected 138fe4e069798d9aa948a5402ff15e58f483ee4e - < 9bfa80c8aa4e06dff55a953c3fffbfc68a3a3b1caffected 138fe4e069798d9aa948a5402ff15e58f483ee4e - < 2d1eef248107bdf3d5a69d0fde04c30a79a7bf5d+3 more versions |
Linux | Linux | affected 2.6.26unaffected 0 - < 2.6.26unaffected 5.4.292 - <= 5.4.*unaffected 5.10.236 - <= 5.10.*unaffected 5.15.180 - <= 5.15.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now