Linux Kernel Vulnerability Exposed in Network Packet Handling by Intel

CVE-2025-22117

Summary

A vulnerability has been identified in the Linux kernel related to improper validation of packet length values in the ice_vc_fdir_parse_raw() function. An attacker could potentially exploit this flaw by sending malicious packets that exceed the VIRTCHNL_MAX_SIZE_RAW_PACKET limit. This situation could lead to unexpected behavior, which may compromise system integrity and expose sensitive information. The issue has been addressed by implementing checks to ensure that the packet length is properly validated before processing.

References