Home

Description

In the Linux kernel, the following vulnerability has been resolved: block: avoid possible overflow for chunk_sectors check in blk_stack_limits() In blk_stack_limits(), we check that the t->chunk_sectors value is a multiple of the t->physical_block_size value. However, by finding the chunk_sectors value in bytes, we may overflow the unsigned int which holds chunk_sectors, so change the check to be based on sectors.

PUBLISHED Reserved 2025-04-16 | Published 2025-09-12 | Updated 2026-05-12 | Assigner Linux

Product status

Default status
unaffected

22ada802ede89829dd010a317d9b812b7df7111a (git) before 418751910044649baa2b424ea31cce3fc4dcc253
affected

22ada802ede89829dd010a317d9b812b7df7111a (git) before 8b3ce085b52e674290cbfdd07034e7653ffbe4dc
affected

22ada802ede89829dd010a317d9b812b7df7111a (git) before 31f2f080898e50cbf2bae62d35f9f2a997547b38
affected

22ada802ede89829dd010a317d9b812b7df7111a (git) before 3b9d69f0e68aa6b0acd9791c45d445154a8c66e9
affected

22ada802ede89829dd010a317d9b812b7df7111a (git) before 46aa80ef49594ed7de685ecbc673b291e9a2c159
affected

22ada802ede89829dd010a317d9b812b7df7111a (git) before 5e276e6ff9aacf8901b9c3265c3cdd2568c9fff2
affected

22ada802ede89829dd010a317d9b812b7df7111a (git) before 14beeef4aafecc8a41de534e31fb5be94739392f
affected

22ada802ede89829dd010a317d9b812b7df7111a (git) before 448dfecc7ff807822ecd47a5c052acedca7d09e8
affected

Default status
affected

5.10
affected

Any version before 5.10
unaffected

5.10.241 (semver)
unaffected

5.15.190 (semver)
unaffected

6.1.149 (semver)
unaffected

6.6.103 (semver)
unaffected

6.12.43 (semver)
unaffected

6.15.11 (semver)
unaffected

6.16.2 (semver)
unaffected

6.17 (original_commit_for_fix)
unaffected

References

lists.debian.org/debian-lts-announce/2025/10/msg00008.html

lists.debian.org/debian-lts-announce/2025/10/msg00007.html

cert-portal.siemens.com/productcert/html/ssa-082556.html

cert-portal.siemens.com/productcert/html/ssa-032379.html

git.kernel.org/...c/418751910044649baa2b424ea31cce3fc4dcc253

git.kernel.org/...c/8b3ce085b52e674290cbfdd07034e7653ffbe4dc

git.kernel.org/...c/31f2f080898e50cbf2bae62d35f9f2a997547b38

git.kernel.org/...c/3b9d69f0e68aa6b0acd9791c45d445154a8c66e9

git.kernel.org/...c/46aa80ef49594ed7de685ecbc673b291e9a2c159

git.kernel.org/...c/5e276e6ff9aacf8901b9c3265c3cdd2568c9fff2

git.kernel.org/...c/14beeef4aafecc8a41de534e31fb5be94739392f

git.kernel.org/...c/448dfecc7ff807822ecd47a5c052acedca7d09e8

cve.org (CVE-2025-39795)

nvd.nist.gov (CVE-2025-39795)

Download JSON