Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" This patch ensures that the RX ring size (rx_pending) is not set below the permitted length. This avoids UBSAN shift-out-of-bounds errors when users passes small or zero ring sizes via ethtool -G.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.6.1, < 5.10.248 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/442848e457f5a9f71a4e7e14d24d73dae278ebe3Patch
- https://git.kernel.org/stable/c/4cc4cfe4d23c883120b6f3d41145edbaa281f2abPatch
- https://git.kernel.org/stable/c/5d8dfa3abb9a845302e021cf9c92d941abbc011aPatch
- https://git.kernel.org/stable/c/658caf3b8aad65f8b8e102670ca4f68c7030f655Patch
- https://git.kernel.org/stable/c/85f4b0c650d9f9db10bda8d3acfa1af83bf78cf7Patch
- https://git.kernel.org/stable/c/aa743b0d98448282b2cb37356db8db2a48524624Patch
- https://git.kernel.org/stable/c/b23a2e15589466a027c9baa3fb5813c9f6a6c6dcPatch
FAQ
What is CVE-2025-71137?
CVE-2025-71137 is a vulnerability with a CVSS score of 7.8 (HIGH). In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" This patch ensures that the RX ring size (rx_pending) is not set below the pe...
How severe is CVE-2025-71137?
CVE-2025-71137 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-71137?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.