CVE-2025-40216 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/rsrc: don't rely on user vaddr alignment There is no guaranteed alignment for user pointers, however the calculation of an offset of the first page into a folio after coalescing uses some weird bit mask logic, get rid of it.

PUBLISHED Reserved 2025-04-16 | Published 2025-12-04 | Updated 2025-12-04 | Assigner Linux

Product status

Default status

unaffected

a8edbb424b1391b077407c75d8f5d2ede77aa70d (git) before 50998b0ae7d9d552e96d8b7239981cf05f65eff5

affected

a8edbb424b1391b077407c75d8f5d2ede77aa70d (git) before f16769241594be59387b56ab525e327f54377e60

affected

a8edbb424b1391b077407c75d8f5d2ede77aa70d (git) before 3a3c6d61577dbb23c09df3e21f6f9eda1ecd634b

affected

Default status

affected

6.12

affected

Any version before 6.12

unaffected

6.12.36 (semver)

unaffected

6.15.5 (semver)

unaffected

6.16 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/50998b0ae7d9d552e96d8b7239981cf05f65eff5

git.kernel.org/...c/f16769241594be59387b56ab525e327f54377e60

git.kernel.org/...c/3a3c6d61577dbb23c09df3e21f6f9eda1ecd634b

cve.org (CVE-2025-40216)

nvd.nist.gov (CVE-2025-40216)

help @ threatint.eu