Detections
Analytics

CVE-2025-71064

medium

Description

In the Linux kernel, the following vulnerability has been resolved: net: hns3: using the num_tqps in the vf driver to apply for resources Currently, hdev->htqp is allocated using hdev->num_tqps, and kinfo->tqp is allocated using kinfo->num_tqps. However, kinfo->num_tqps is set to min(new_tqps, hdev->num_tqps); Therefore, kinfo->num_tqps may be smaller than hdev->num_tqps, which causes some hdev->htqp[i] to remain uninitialized in hclgevf_knic_setup(). Thus, this patch allocates hdev->htqp and kinfo->tqp using hdev->num_tqps, ensuring that the lengths of hdev->htqp and kinfo->tqp are consistent and that all elements are properly initialized.

References

https://git.kernel.org/stable/c/c2a16269742e176fccdd0ef9c016a233491a49ad

https://git.kernel.org/stable/c/6cd8a2930df850f4600fe8c57d0662b376520281

https://git.kernel.org/stable/c/62f28d79a6186a602a9d926a2dbb5b12b6867df7

https://git.kernel.org/stable/c/429f946a7af3fbf08761d218746cd4afa80a7954

https://git.kernel.org/stable/c/1956d47a03eb625951e9e070db39fe2590e27510

Details

Source: Mitre, NVD

Published: 2026-01-13

Updated: 2026-01-14

Risk Information

CVSS v2

Base Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018