We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-21993

iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic()



Description

In the Linux kernel, the following vulnerability has been resolved: iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic() When performing an iSCSI boot using IPv6, iscsistart still reads the /sys/firmware/ibft/ethernetX/subnet-mask entry. Since the IPv6 prefix length is 64, this causes the shift exponent to become negative, triggering a UBSAN warning. As the concept of a subnet mask does not apply to IPv6, the value is set to ~0 to suppress the warning message.

Reserved 2024-12-29 | Published 2025-04-02 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before a858cd58dea06cf85b142673deea8c5d87f11e70
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before f763c82db8166e28f45b7cc4a5398a7859665940
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before b388e185bfad32bfed6a97a6817f74ca00a4318f
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 9bfa80c8aa4e06dff55a953c3fffbfc68a3a3b1c
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 2d1eef248107bdf3d5a69d0fde04c30a79a7bf5d
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before b253660fac5e0e9080d2c95e3a029e1898d49afb
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before c1c6e527470e5eab0b2d57bd073530fbace39eab
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 07e0d99a2f701123ad3104c0f1a1e66bce74d6e5
affected

Default status
affected

5.4.292
unaffected

5.10.236
unaffected

5.15.180
unaffected

6.1.132
unaffected

6.6.84
unaffected

6.12.20
unaffected

6.13.8
unaffected

6.14
unaffected

References

git.kernel.org/...c/a858cd58dea06cf85b142673deea8c5d87f11e70

git.kernel.org/...c/f763c82db8166e28f45b7cc4a5398a7859665940

git.kernel.org/...c/b388e185bfad32bfed6a97a6817f74ca00a4318f

git.kernel.org/...c/9bfa80c8aa4e06dff55a953c3fffbfc68a3a3b1c

git.kernel.org/...c/2d1eef248107bdf3d5a69d0fde04c30a79a7bf5d

git.kernel.org/...c/b253660fac5e0e9080d2c95e3a029e1898d49afb

git.kernel.org/...c/c1c6e527470e5eab0b2d57bd073530fbace39eab

git.kernel.org/...c/07e0d99a2f701123ad3104c0f1a1e66bce74d6e5

cve.org (CVE-2025-21993)

nvd.nist.gov (CVE-2025-21993)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-21993

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.