{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-71137","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-01-13T15:30:19.656Z","datePublished":"2026-01-14T15:07:51.264Z","dateUpdated":"2026-05-11T21:55:41.659Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:55:41.659Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"\n\nThis patch ensures that the RX ring size (rx_pending) is not\nset below the permitted length. This avoids UBSAN\nshift-out-of-bounds errors when users passes small or zero\nring sizes via ethtool -G."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c"],"versions":[{"version":"d45d8979840d9c9ac93d3fe8cfc8e794b7228445","lessThan":"5d8dfa3abb9a845302e021cf9c92d941abbc011a","status":"affected","versionType":"git"},{"version":"d45d8979840d9c9ac93d3fe8cfc8e794b7228445","lessThan":"4cc4cfe4d23c883120b6f3d41145edbaa281f2ab","status":"affected","versionType":"git"},{"version":"d45d8979840d9c9ac93d3fe8cfc8e794b7228445","lessThan":"658caf3b8aad65f8b8e102670ca4f68c7030f655","status":"affected","versionType":"git"},{"version":"d45d8979840d9c9ac93d3fe8cfc8e794b7228445","lessThan":"b23a2e15589466a027c9baa3fb5813c9f6a6c6dc","status":"affected","versionType":"git"},{"version":"d45d8979840d9c9ac93d3fe8cfc8e794b7228445","lessThan":"aa743b0d98448282b2cb37356db8db2a48524624","status":"affected","versionType":"git"},{"version":"d45d8979840d9c9ac93d3fe8cfc8e794b7228445","lessThan":"442848e457f5a9f71a4e7e14d24d73dae278ebe3","status":"affected","versionType":"git"},{"version":"d45d8979840d9c9ac93d3fe8cfc8e794b7228445","lessThan":"85f4b0c650d9f9db10bda8d3acfa1af83bf78cf7","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c"],"versions":[{"version":"5.6","status":"affected"},{"version":"0","lessThan":"5.6","status":"unaffected","versionType":"semver"},{"version":"5.10.248","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.198","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.160","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.120","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.64","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.4","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"5.10.248"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"5.15.198"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"6.1.160"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"6.6.120"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"6.12.64"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"6.18.4"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"6.19"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/5d8dfa3abb9a845302e021cf9c92d941abbc011a"},{"url":"https://git.kernel.org/stable/c/4cc4cfe4d23c883120b6f3d41145edbaa281f2ab"},{"url":"https://git.kernel.org/stable/c/658caf3b8aad65f8b8e102670ca4f68c7030f655"},{"url":"https://git.kernel.org/stable/c/b23a2e15589466a027c9baa3fb5813c9f6a6c6dc"},{"url":"https://git.kernel.org/stable/c/aa743b0d98448282b2cb37356db8db2a48524624"},{"url":"https://git.kernel.org/stable/c/442848e457f5a9f71a4e7e14d24d73dae278ebe3"},{"url":"https://git.kernel.org/stable/c/85f4b0c650d9f9db10bda8d3acfa1af83bf78cf7"}],"title":"octeontx2-pf: fix \"UBSAN: shift-out-of-bounds error\"","x_generator":{"engine":"bippy-1.2.0"}}}}