CVE-2025-40252
Description
In the Linux kernel, the following vulnerability has been resolved: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() The loops in 'qede_tpa_cont()' and 'qede_tpa_end()', iterate over 'cqe->len_list[]' using only a zero-length terminator as the stopping condition. If the terminator was missing or malformed, the loop could run past the end of the fixed-size array. Add an explicit bound check using ARRAY_SIZE() in both loops to prevent a potential out-of-bounds access. Found by Linux Verification Center (linuxtesting.org) with SVACE.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
OS impact
SUSE Affected 1 release
| Version | Status | Fixed in |
|---|---|---|
| โ | Affected | โ |
Debian Fixed 5 releases
| Version | Status | Fixed in |
|---|---|---|
| trixie | Fixed | 6.12.63-1 |
| sid | Fixed | 6.17.10-1 |
| forky | Fixed | 6.17.10-1 |
| bullseye | Fixed | 6.1.159-1~deb11u1 |
| bookworm | Fixed | 6.1.159-1 |
Red Hat Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 8 | Fixed | โ |
References
- https://www.suse.com/security/cve/CVE-2025-40252.html
- https://security-tracker.debian.org/tracker/CVE-2025-40252
- https://access.redhat.com/errata/RHSA-2026:13577
- https://bugzilla.redhat.com/2301637
- https://bugzilla.redhat.com/2424886
- https://bugzilla.redhat.com/2453803
- https://bugzilla.redhat.com/2454844
- https://bugzilla.redhat.com/2460538
- https://errata.almalinux.org/8/ALSA-2026-13577.html
- https://access.redhat.com/errata/RHSA-2026:13578
- https://errata.almalinux.org/8/ALSA-2026-13578.html
- https://git.kernel.org/stable/c/896f1a2493b59beb2b5ccdf990503dbb16cb2256
- https://git.kernel.org/stable/c/917a9d02182ac8b4f25eb47dc02f3ec679608c24
- https://git.kernel.org/stable/c/a778912b4a53587ea07d85526d152f85d109cbfe
- https://git.kernel.org/stable/c/e441db07f208184e0466abf44b389a81d70c340e
- https://git.kernel.org/stable/c/ecbb12caf399d7cf364b7553ed5aebeaa2f255bc
- https://git.kernel.org/stable/c/f0923011c1261b33a2ac1de349256d39cb750dd0
- https://cert-portal.siemens.com/productcert/html/ssa-253495.html
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.