We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-21927

nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu()



Description

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu() nvme_tcp_recv_pdu() doesn't check the validity of the header length. When header digests are enabled, a target might send a packet with an invalid header length (e.g. 255), causing nvme_tcp_verify_hdgst() to access memory outside the allocated area and cause memory corruptions by overwriting it with the calculated digest. Fix this by rejecting packets with an unexpected header length.

Reserved 2024-12-29 | Published 2025-04-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

3f2304f8c6d6ed97849057bd16fee99e434ca796 before 9fbc953d6b38bc824392e01850f0aeee3b348722
affected

3f2304f8c6d6ed97849057bd16fee99e434ca796 before 22b06c89aa6b2d1ecb8aea72edfb9d53af8d5126
affected

3f2304f8c6d6ed97849057bd16fee99e434ca796 before ad95bab0cd28ed77c2c0d0b6e76e03e031391064
affected

Default status
affected

5.0
affected

Any version before 5.0
unaffected

6.12.19
unaffected

6.13.7
unaffected

6.14
unaffected

References

git.kernel.org/...c/9fbc953d6b38bc824392e01850f0aeee3b348722

git.kernel.org/...c/22b06c89aa6b2d1ecb8aea72edfb9d53af8d5126

git.kernel.org/...c/ad95bab0cd28ed77c2c0d0b6e76e03e031391064

cve.org (CVE-2025-21927)

nvd.nist.gov (CVE-2025-21927)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-21927

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.