2400630 – (CVE-2025-39922) CVE-2025-39922 kernel: ixgbe: fix incorrect map used in eee linkmode

Bug 2400630 (CVE-2025-39922) - CVE-2025-39922 kernel: ixgbe: fix incorrect map used in eee linkmode

Summary: CVE-2025-39922 kernel: ixgbe: fix incorrect map used in eee linkmode

Keywords:
Status:	NEW
Alias:	CVE-2025-39922
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-10-01 09:01 UTC by OSIDB Bzimport
Modified:	2025-10-02 11:45 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-10-01 09:01:51 UTC

In the Linux kernel, the following vulnerability has been resolved:

ixgbe: fix incorrect map used in eee linkmode

incorrectly used ixgbe_lp_map in loops intended to populate the
supported and advertised EEE linkmode bitmaps based on ixgbe_ls_map.
This results in incorrect bit setting and potential out-of-bounds
access, since ixgbe_lp_map and ixgbe_ls_map have different sizes
and purposes.

ixgbe_lp_map[i] -> ixgbe_ls_map[i]

Use ixgbe_ls_map for supported and advertised linkmodes, and keep
ixgbe_lp_map usage only for link partner (lp_advertised) mapping.

Comment 1 Alexander B 2025-10-02 11:42:58 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025100120-CVE-2025-39922-36d0@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.