3 matches found
CVE-2025-22055
CVE-2025-22055 is a Linux kernel issue in net: geneve_opt length overflow. A 5-bit length (max 128 bytes) for each option can be abused by sending a 128-byte option to fake a zero-length option, enabling heap out-of-bounds read during parsing. Connected sources describe the root cause and show a ...
CVE-2025-22055 net: fix geneve_opt length integer overflow
In the Linux kernel, the following vulnerability has been resolved: net: fix geneveopt length integer overflow struct geneveopt uses 5 bit length for each single option, which means every vary size option should be smaller than 128 bytes. However, all current related Netlink policies cannot promi...
CVE-2025-22055 net: fix geneve_opt length integer overflow
In the Linux kernel, the following vulnerability has been resolved: net: fix geneveopt length integer overflow struct geneveopt uses 5 bit length for each single option, which means every vary size option should be smaller than 128 bytes. However, all current related Netlink policies cannot promi...