CVE-2025-21667

Summary

In the Linux kernel, the following vulnerability has been resolved:

iomap: avoid avoid truncating 64-bit offset to 32 bits

on 32-bit kernels, iomap_write_delalloc_scan() was inadvertently using a 32-bit position due to folio_next_index() returning an unsigned long. This could lead to an infinite loop when writing to an xfs filesystem.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux38be53c3fd7f4f4bd5de319a323d72f9f6beb16d < 7ca4bd6b754913910151acce00be093f03642725affected
LinuxLinuxf43dc4dc3eff028b5ddddd99f3a66c5a6bdd4e78 < 91371922704c8d82049ef7c2ad974d0a2cd1174daffected
LinuxLinuxf43dc4dc3eff028b5ddddd99f3a66c5a6bdd4e78 < 402ce16421477e27f30b57d6d1a6dc248fa3a4e4affected
LinuxLinuxf43dc4dc3eff028b5ddddd99f3a66c5a6bdd4e78 < c13094b894de289514d84b8db56d1f2931a0badeaffected
LinuxLinux6.1.92 < 6.1.127affected
LinuxLinux6.2affected
LinuxLinux0 < 6.2unaffected
LinuxLinux6.1.127 <= 6.1.*unaffected
LinuxLinux6.6.74 <= 6.6.*unaffected
LinuxLinux6.12.11 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References