CVE-2025-40252
Deferred Deferred - Pending Action
BaseFortify

Publication date: 2025-12-04

Last updated on: 2026-06-02

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() The loops in 'qede_tpa_cont()' and 'qede_tpa_end()', iterate over 'cqe->len_list[]' using only a zero-length terminator as the stopping condition. If the terminator was missing or malformed, the loop could run past the end of the fixed-size array. Add an explicit bound check using ARRAY_SIZE() in both loops to prevent a potential out-of-bounds access. Found by Linux Verification Center (linuxtesting.org) with SVACE.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-04
Last Modified
2026-06-02
Generated
2026-06-16
AI Q&A
2025-12-04
EPSS Evaluated
2026-06-15
NVD
CVE-2025-40252
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is in the Linux kernel's qlogic/qede network driver. It involves two functions, qede_tpa_cont() and qede_tpa_end(), which iterate over an array called cqe->len_list[] using a zero-length terminator to stop the loop. If this terminator is missing or malformed, the loops can read beyond the end of the fixed-size array, causing a potential out-of-bounds read. The fix adds explicit boundary checks to prevent this out-of-bounds access.

Impact Analysis

This vulnerability can lead to out-of-bounds reads in the Linux kernel network driver, which may cause system instability, crashes, or potentially expose sensitive kernel memory. Such behavior could be exploited by attackers to cause denial of service or information disclosure.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-40252. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart