CVE-2025-21993

HIGH

Linux Kernel - Out-of-bounds Read in iSCSI iBFT NIC Attribute Handling

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic() When performing an iSCSI boot using IPv6, iscsistart still reads the /sys/firmware/ibft/ethernetX/subnet-mask entry. Since the IPv6 prefix length is 64, this causes the shift exponent to become negative, triggering a UBSAN warning. As the concept of a subnet mask does not apply to IPv6, the value is set to ~0 to suppress the warning message.

References (10)

Core 10
Core References

Scores

CVSS v3 7.1
EPSS 0.0019
EPSS Percentile 8.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-125
Status published
Products (27)
linux/Kernel 2.6.26 - 5.4.292linux
linux/Kernel 5.11.0 - 5.15.180linux
linux/Kernel 5.16.0 - 6.1.132linux
linux/Kernel 5.5.0 - 5.10.236linux
linux/Kernel 6.13.0 - 6.13.8linux
linux/Kernel 6.2.0 - 6.6.84linux
linux/Kernel 6.7.0 - 6.12.20linux
Linux/Linux < 2.6.26
Linux/Linux 138fe4e069798d9aa948a5402ff15e58f483ee4e - 07e0d99a2f701123ad3104c0f1a1e66bce74d6e5
Linux/Linux 138fe4e069798d9aa948a5402ff15e58f483ee4e - 2d1eef248107bdf3d5a69d0fde04c30a79a7bf5d
... and 17 more
Published Apr 02, 2025
Tracked Since Feb 18, 2026