CVE-2025-71112
Published: Jan 14, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: net: hns3: add VLAN id validation before using Currently, the VLAN id may be used without validation when receive a VLAN configuration mailbox from VF. The length of vlan_del_fail_bmap is BITS_TO_LONGS(VLAN_N_VID). It may cause out-of-bounds memory access once the VLAN id is bigger than or equal to VLAN_N_VID. Therefore, VLAN id needs to be checked to ensure it is within the range of VLAN_N_VID.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected fe4144d47eef8453459c53a34e9d5940a3e6c219 - < 46c7d9fe8dd869ea5de666aba8c1ec1061ca44a8affected fe4144d47eef8453459c53a34e9d5940a3e6c219 - < 42c91dfa772c57de141e5a55a187ac760c0fd7e1affected fe4144d47eef8453459c53a34e9d5940a3e6c219 - < 00e56a7706e10b3d00a258d81fcb85a7e96372d6affected fe4144d47eef8453459c53a34e9d5940a3e6c219 - < b7b4f3bf118f51b67691a55b464f04452e5dc6fcaffected fe4144d47eef8453459c53a34e9d5940a3e6c219 - < 95cca255a7a5ad782639ff0298c2a486707d1046+2 more versions |
Linux | Linux | affected 5.3unaffected 0 - < 5.3unaffected 5.10.248 - <= 5.10.*unaffected 5.15.198 - <= 5.15.*unaffected 6.1.160 - <= 6.1.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now