CVE-2025-22118

In the Linux kernel, the following vulnerability has been resolved: ice: validate queue quanta parameters to prevent OOB access Add queue wraparound prevention in quanta configuration. Ensure end_qid does not overflow by validating start_qid and num_queues.

CVSS v3 7.1 HIGH

7.1^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.2

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/4161cf3f4c11006507f4e02bedc048a215a4b81a	Patch
https://git.kernel.org/stable/c/e2f7d3f7331b92cb820da23e8c45133305da1e63	Patch

Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

03 Nov 2025, 18:35

Type	Values Removed	Values Added
CWE		CWE-125
CPE		cpe:2.3:o:linux:linux_kernel::::::::
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ice: Validar los parámetros de los cuantos de cola para impedir el acceso OOB. Añadir prevención de encapsulamiento de cola en la configuración de cuantos. Asegurar que end_qid no se desborde validando start_qid y num_queues.
First Time		Linux Linux linux Kernel
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.1
References	~~() https://git.kernel.org/stable/c/4161cf3f4c11006507f4e02bedc048a215a4b81a -~~	() https://git.kernel.org/stable/c/4161cf3f4c11006507f4e02bedc048a215a4b81a - Patch
References	~~() https://git.kernel.org/stable/c/e2f7d3f7331b92cb820da23e8c45133305da1e63 -~~	() https://git.kernel.org/stable/c/e2f7d3f7331b92cb820da23e8c45133305da1e63 - Patch

16 Apr 2025, 15:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-04-16 15:16

Updated : 2025-11-03 18:35

NVD link : CVE-2025-22118

Mitre link : CVE-2025-22118

CVE.ORG link : CVE-2025-22118

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-125

Out-of-bounds Read

7.1 /10