Instituto Nacional de ciberseguridad. Sección Incibe
Instituto Nacional de Ciberseguridad. Sección INCIBE-CERT

Go to Calendar     Go to Press Room     Go to Newsletters subscription

Search

CVE-2025-21885

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/03/2025
Last modified:
29/10/2025

Description

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> RDMA/bnxt_re: Fix the page details for the srq created by kernel consumers<br /> <br /> While using nvme target with use_srq on, below kernel panic is noticed.<br /> <br /> [ 549.698111] bnxt_en 0000:41:00.0 enp65s0np0: FEC autoneg off encoding: Clause 91 RS(544,514)<br /> [ 566.393619] Oops: divide error: 0000 [#1] PREEMPT SMP NOPTI<br /> ..<br /> [ 566.393799] <br /> [ 566.393807] ? __die_body+0x1a/0x60<br /> [ 566.393823] ? die+0x38/0x60<br /> [ 566.393835] ? do_trap+0xe4/0x110<br /> [ 566.393847] ? bnxt_qplib_alloc_init_hwq+0x1d4/0x580 [bnxt_re]<br /> [ 566.393867] ? bnxt_qplib_alloc_init_hwq+0x1d4/0x580 [bnxt_re]<br /> [ 566.393881] ? do_error_trap+0x7c/0x120<br /> [ 566.393890] ? bnxt_qplib_alloc_init_hwq+0x1d4/0x580 [bnxt_re]<br /> [ 566.393911] ? exc_divide_error+0x34/0x50<br /> [ 566.393923] ? bnxt_qplib_alloc_init_hwq+0x1d4/0x580 [bnxt_re]<br /> [ 566.393939] ? asm_exc_divide_error+0x16/0x20<br /> [ 566.393966] ? bnxt_qplib_alloc_init_hwq+0x1d4/0x580 [bnxt_re]<br /> [ 566.393997] bnxt_qplib_create_srq+0xc9/0x340 [bnxt_re]<br /> [ 566.394040] bnxt_re_create_srq+0x335/0x3b0 [bnxt_re]<br /> [ 566.394057] ? srso_return_thunk+0x5/0x5f<br /> [ 566.394068] ? __init_swait_queue_head+0x4a/0x60<br /> [ 566.394090] ib_create_srq_user+0xa7/0x150 [ib_core]<br /> [ 566.394147] nvmet_rdma_queue_connect+0x7d0/0xbe0 [nvmet_rdma]<br /> [ 566.394174] ? lock_release+0x22c/0x3f0<br /> [ 566.394187] ? srso_return_thunk+0x5/0x5f<br /> <br /> Page size and shift info is set only for the user space SRQs.<br /> Set page size and page shift for kernel space SRQs also.

Impact

Vector 3.x
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS v3.1 Severity and Metrics:

Base Score: 5.50 MEDIUM
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): None
Integrity (I): None
Availability (A): High

Base Score 3.x
5.50
Severity 3.x
MEDIUM

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 5.7 (including) 6.12.18 (excluding)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 6.13 (including) 6.13.6 (excluding)
cpe:2.3:o:linux:linux_kernel:6.14:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.14:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.14:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.14:rc4:*:*:*:*:*:*

To consult the complete list of CPE names with products and versions, see this page


References to Advisories, Solutions, and Tools