5.5
CVE-2025-22117
- EPSS 0.16%
- Veröffentlicht 16.04.2025 14:13:03
- Zuletzt bearbeitet 02.04.2026 12:16:18
- CVE-Watchlists
- Unerledigt
ice: fix using untrusted value of pkt_len in ice_vc_fdir_parse_raw()
In the Linux kernel, the following vulnerability has been resolved: ice: fix using untrusted value of pkt_len in ice_vc_fdir_parse_raw() Fix using the untrusted value of proto->raw.pkt_len in function ice_vc_fdir_parse_raw() by verifying if it does not exceed the VIRTCHNL_MAX_SIZE_RAW_PACKET value.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.12 < 6.14.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.059 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
https://git.kernel.org/stable/c/362f704ba73a359db9cded567e891d9a8f081875
https://git.kernel.org/stable/c/1388dd564183a5a18ec4a966748037736b5653c5
https://git.kernel.org/stable/c/363377af2c9e874fbba3a199408f8ec7b37906f7