CVE-2025-40252
Published: Dec 4, 2025
Modified: Jun 2, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() The loops in 'qede_tpa_cont()' and 'qede_tpa_end()', iterate over 'cqe->len_list[]' using only a zero-length terminator as the stopping condition. If the terminator was missing or malformed, the loop could run past the end of the fixed-size array. Add an explicit bound check using ARRAY_SIZE() in both loops to prevent a potential out-of-bounds access. Found by Linux Verification Center (linuxtesting.org) with SVACE.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 55482edc25f0606851de42e73618f813f310d009 - < ecbb12caf399d7cf364b7553ed5aebeaa2f255bcaffected 55482edc25f0606851de42e73618f813f310d009 - < a778912b4a53587ea07d85526d152f85d109cbfeaffected 55482edc25f0606851de42e73618f813f310d009 - < f0923011c1261b33a2ac1de349256d39cb750dd0affected 55482edc25f0606851de42e73618f813f310d009 - < 917a9d02182ac8b4f25eb47dc02f3ec679608c24affected 55482edc25f0606851de42e73618f813f310d009 - < e441db07f208184e0466abf44b389a81d70c340e+1 more versions |
Linux | Linux | affected 4.6unaffected 0 - < 4.6unaffected 5.15.197 - <= 5.15.*unaffected 6.1.159 - <= 6.1.*unaffected 6.6.118 - <= 6.6.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now