Security Advisory

CVE-2025-38264

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-07-09 10:42:38

Last updated 2026-05-11 21:24:26

Assigner Linux

State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvme_tcp_handle_r2t() to ensure its not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing.

← Browse all CVEs View on cve.org ↗