In the Linux kernel, the following vulnerability has been resolved:

i40e: fix input validation logic for action_meta

Fix condition to check 'greater or equal' to prevent OOB dereference.

Metrics

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00024.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

No data.

No data.

No data.

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/28465770ca3b694286ff9ed6dfd558413f57d98f cve-icon cve-icon
https://git.kernel.org/stable/c/3118f41d8fa57b005f53ec3db2ba5eab1d7ba12b cve-icon cve-icon
https://git.kernel.org/stable/c/3883e9702b6a4945e93b16c070f338a9f5b496f9 cve-icon cve-icon
https://git.kernel.org/stable/c/461e0917eedcd159d87f3ea846754a1e07d7e78a cve-icon cve-icon
https://git.kernel.org/stable/c/560e1683410585fbd5df847f43433c4296f0d222 cve-icon cve-icon
https://git.kernel.org/stable/c/9739d5830497812b0bdeaee356ddefbe60830b88 cve-icon cve-icon
https://git.kernel.org/stable/c/a88c1b2746eccf00e2094b187945f0f1e990b400 cve-icon cve-icon
https://git.kernel.org/stable/c/f8c8e11825b24661596fa8db2f0981ba17ed0817 cve-icon cve-icon
History

Wed, 15 Oct 2025 08:00:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: i40e: fix input validation logic for action_meta Fix condition to check 'greater or equal' to prevent OOB dereference.
Title i40e: fix input validation logic for action_meta
References
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2025-10-15T07:55:53.610Z

Reserved: 2025-04-16T07:20:57.149Z

Link: CVE-2025-39970

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2025-10-15T08:15:34.620

Modified: 2025-10-15T08:15:34.620

Link: CVE-2025-39970

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.