VYPR
Unrated severityNVD Advisory· Published Apr 1, 2025· Updated Oct 1, 2025

nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu()

CVE-2025-21927

Description

In the Linux kernel, the following vulnerability has been resolved:

nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu()

nvme_tcp_recv_pdu() doesn't check the validity of the header length. When header digests are enabled, a target might send a packet with an invalid header length (e.g. 255), causing nvme_tcp_verify_hdgst() to access memory outside the allocated area and cause memory corruptions by overwriting it with the calculated digest.

Fix this by rejecting packets with an unexpected header length.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

164

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.