Selvin Xavier

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.61 **Description** The issue is related to an out-of-bounds check in the RDMA/bnxt re driver, specifically when parsing pacing stats on GenP5 and P7 adapters. This caused a slab-out-of-bounds error when KASAN is enabled. The vulnerability is associated with reading memory beyond the allocated buffer, potentially allowing an attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For Linux kernel versions prior to 6.6.61, update to version 6.6.61 or later to resolve the issue. As a temporary workaround, consider disabling the `bnxt re get hw stats()` function until a patch is available. Restrict access to the vulnerable `bnxt re` driver to minimize the risk of exploitation. Avoid using the `rdev->dbr pacing` check in the affected driver until the issue is resolved.