← Retour aux CVEs
CVE-2025-71068
HIGH7.8
Description
In the Linux kernel, the following vulnerability has been resolved: svcrdma: bound check rq_pages index in inline path svc_rdma_copy_inline_range indexed rqstp->rq_pages[rc_curpage] without verifying rc_curpage stays within the allocated page array. Add guards before the first use and after advancing to a new page.
Details CVE
Score CVSS v3.17.8
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueLOCAL
ComplexiteLOW
Privileges requisLOW
Interaction utilisateurNONE
Publie1/13/2026
Derniere modification4/3/2026
Sourcenvd
Observations honeypot0
Produits affectes
linux:linux_kernel
References
https://git.kernel.org/stable/c/5f140b525180c628db8fa6c897f138194a2de417(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/7ba826aae1d43212f3baa53a2175ad949e21926e(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/a22316f5e9a29e4b92030bd8fb9435fe0eb1d5c9(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/d1bea0ce35b6095544ee82bb54156fc62c067e58(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/da1ccfc4c452541584a4eae89e337cfa21be6d5a(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.