CVE-2025-37825

Published: May 8, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix out-of-bounds access in nvmet_enable_port When trying to enable a port that has no transport configured yet, nvmet_enable_port() uses NVMF_TRTYPE_MAX (255) to query the transports array, causing an out-of-bounds access: [ 106.058694] BUG: KASAN: global-out-of-bounds in nvmet_enable_port+0x42/0x1da [ 106.058719] Read of size 8 at addr ffffffff89dafa58 by task ln/632 [...] [ 106.076026] nvmet: transport type 255 not supported Since commit 200adac75888, NVMF_TRTYPE_MAX is the default state as configured by nvmet_ports_make(). Avoid this by checking for NVMF_TRTYPE_MAX before proceeding.

Vendor	Product	Versions
Linux	Linux	affected `200adac75888182c09027e9b7852507dabd87034 - < 83c00860a37b3fcba8026cb344101f1b8af547cf` affected `200adac75888182c09027e9b7852507dabd87034 - < 3d7aa0c7b4e96cd460826d932e44710cdeb3378b`
Linux	Linux	affected `6.14` unaffected `0 - < 6.14` unaffected `6.14.5 - <= 6.14.` unaffected `6.15 - <= `

References

https://git.kernel.org/stable/c/83c00860a37b3fcba8026cb344101f1b8af547cf

https://git.kernel.org/stable/c/3d7aa0c7b4e96cd460826d932e44710cdeb3378b

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-37825

Description

Affected Products

References