Description
In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix divide-by-zero in setup_geo() with zero far_copies setup_geo() extracts near_copies (nc) and far_copies (fc) from the user-provided layout parameter without checking for zero. When fc=0 with the "improved" far set layout selected, 'geo->far_set_size = disks / fc' triggers a divide-by-zero. Validate nc and fc immediately after extraction, returning -1 if either is zero.
Product status
475901aff15841fb0a81e7546517407779a9b061 (git) before 0b43a70394ce492274e67463326be03e0a9897c5
475901aff15841fb0a81e7546517407779a9b061 (git) before c716ab3034f84f8a6c226814247b8c5ac9f95da1
475901aff15841fb0a81e7546517407779a9b061 (git) before 553e32adfa1a96b217651139a3f8c3b92b9984ac
475901aff15841fb0a81e7546517407779a9b061 (git) before 4af2e558e6fdfb972c61350653fd55d1f62b60a5
475901aff15841fb0a81e7546517407779a9b061 (git) before 9d8e03b9a2b1e8ce5c198bf3a409a629f4d02cda
475901aff15841fb0a81e7546517407779a9b061 (git) before 913d556e4bd1b56ed822815655b82c7bb54edc51
475901aff15841fb0a81e7546517407779a9b061 (git) before f9ddb621b2325eb69c95692958daf2bab4dea2c4
475901aff15841fb0a81e7546517407779a9b061 (git) before 9aa6d860b0930e2f72795665c42c44252a558a0c
3.9
Any version before 3.9
5.10.258 (semver)
5.15.209 (semver)
6.1.175 (semver)
6.6.140 (semver)
6.12.88 (semver)
6.18.30 (semver)
7.0.7 (semver)
7.1-rc2 (original_commit_for_fix)
References
git.kernel.org/...c/0b43a70394ce492274e67463326be03e0a9897c5
git.kernel.org/...c/c716ab3034f84f8a6c226814247b8c5ac9f95da1
git.kernel.org/...c/553e32adfa1a96b217651139a3f8c3b92b9984ac
git.kernel.org/...c/4af2e558e6fdfb972c61350653fd55d1f62b60a5
git.kernel.org/...c/9d8e03b9a2b1e8ce5c198bf3a409a629f4d02cda
git.kernel.org/...c/913d556e4bd1b56ed822815655b82c7bb54edc51
git.kernel.org/...c/f9ddb621b2325eb69c95692958daf2bab4dea2c4
git.kernel.org/...c/9aa6d860b0930e2f72795665c42c44252a558a0c