CVE-2025-39940

Summary

In the Linux kernel, the following vulnerability has been resolved:

dm-stripe: fix a possible integer overflow

There's a possible integer overflow in stripe_io_hints if we have too large chunk size. Test if the overflow happened, and if it did, don't set limits->io_min and limits->io_opt;

Affected Software

VendorProductVersion RangeStatus
LinuxLinux40bea431274c247425e7f5970d796ff7b37a2b22 < f8f64254bca5ae58f3b679441962bda4c409f659affected
LinuxLinux40bea431274c247425e7f5970d796ff7b37a2b22 < ee27658c239b27721397f3e4eb16370b5cce596eaffected
LinuxLinux40bea431274c247425e7f5970d796ff7b37a2b22 < 1071d560afb4c245c2076494226df47db5a35708affected
LinuxLinux2.6.31affected
LinuxLinux0 < 2.6.31unaffected
LinuxLinux6.12.49 <= 6.12.*unaffected
LinuxLinux6.16.9 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

References