CVE-2025-22118: ice: validate queue quanta parameters to prevent OOB access
Description
In the Linux kernel, the following vulnerability has been resolved:
ice: validate queue quanta parameters to prevent OOB access
Add queue wraparound prevention in quanta configuration.
Ensure end_qid does not overflow by validating start_qid and num_queues.
Classification
CVE ID: CVE-2025-22118
Affected Products
Vendor: Linux
Product: Linux, Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.02% (probability of being exploited)
EPSS Percentile: 3.27% (scored less or equal to compared to others)
EPSS Date: 2025-04-18 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2025-22118https://git.kernel.org/stable/c/4161cf3f4c11006507f4e02bedc048a215a4b81a
https://git.kernel.org/stable/c/e2f7d3f7331b92cb820da23e8c45133305da1e63