Upstream information
Description
In the Linux kernel, the following vulnerability has been resolved:ipv6: Fix out-of-bounds access in ipv6_find_tlv()
optlen is fetched without checking whether there is more than one byte to parse.
It can lead to out-of-bounds access.
Found by InfoTeCS on behalf of Linux Verification Center
(linuxtesting.org) with SVACE.
SUSE information
Overall state of this security issue: Does not affect SUSE products
SUSE Bugzilla entry: 1252554 [NEW] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Thu Oct 23 17:27:00 2025CVE page last modified: Thu Oct 23 17:27:00 2025