CVE-2025-39972

i40e: fix idx validation in i40e_validate_queue_map

Severity Score

5.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: i40e: fix idx validation in i40e_validate_queue_map Ensure idx is within range of active/initialized TCs when iterating over
vf->ch[idx] in i40e_validate_queue_map().

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. For the oldstable distribution (bookworm), these problems have been fixed in version 6.1.158-1.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-04-16 CVE Reserved
2025-10-15 CVE Published
2025-10-16 CVE Updated
2025-11-16 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/c27eac48160de72dee33d42b5a33cc7b8a2eb1f5	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/b6cb93a7ff208f324c7ec581d72995f80e115e0e	2025-10-02
https://git.kernel.org/stable/c/6f15a7b34fae75e745bdc2ec05e06ddfd0dd2f3c	2025-10-02
https://git.kernel.org/stable/c/34dfac0c904829967d500c51f216916ce1452957	2025-10-02
https://git.kernel.org/stable/c/4d5e804a9e19b639b18fd13664dbad3c03c79e61	2025-10-02
https://git.kernel.org/stable/c/50a1e2f50f6c22b93b94eb8d168a1be3c05bf5cd	2025-10-02
https://git.kernel.org/stable/c/cc4191e8ef40d2249c1b9a8617d22ec8a976b574	2025-10-02
https://git.kernel.org/stable/c/d4e3eaaa3cb3af77836d806c89cd6ebf533a7320	2025-10-02
https://git.kernel.org/stable/c/aa68d3c3ac8d1dcec40d52ae27e39f6d32207009	2025-09-18

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.4.300 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.4.300"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.10.245 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.10.245"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 5.15.194 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 5.15.194"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.1.155 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.1.155"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.6.109 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.6.109"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.12.50 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.12.50"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.16.10 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.16.10"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.17 < 6.17 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.17 < 6.17"		en		Affected