CVE-2025-71137

This patch ensures that the RX ring size (rx_pending) is not set below the permitted length. This avoids UBSAN shift-out-of-bounds errors when users passes small or zero ring sizes via ethtool -G.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71137.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

d45d8979840d9c9ac93d3fe8cfc8e794b7228445

Fixed

5d8dfa3abb9a845302e021cf9c92d941abbc011a

Fixed

4cc4cfe4d23c883120b6f3d41145edbaa281f2ab

Fixed

658caf3b8aad65f8b8e102670ca4f68c7030f655

Fixed

b23a2e15589466a027c9baa3fb5813c9f6a6c6dc

Fixed

aa743b0d98448282b2cb37356db8db2a48524624

Fixed

442848e457f5a9f71a4e7e14d24d73dae278ebe3

Fixed

85f4b0c650d9f9db10bda8d3acfa1af83bf78cf7

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-71137.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.6.0

Fixed

5.10.248

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.198

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.160

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.120

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.64

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.18.4

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-71137.json"