Block Device Vulnerability in Linux Kernel
CVE-2025-21832

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 March 2025

Summary

A vulnerability in the Linux kernel's block device handling has been identified, specifically within the blkdev_read_iter() function. This issue arises from improper checks related to the return values of blkdev_direct_IO(), which may lead to incorrect handling of negative return values during an iov_iter_revert operation. Consequently, this mismanagement could generate warnings due to excess unroll attempts. To mitigate such occurrences, the system should abstain from reverting operations for -EIOCBQUEUED to ensure proper functionality and stability.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 6c26619effb1b4cb7d20b4e666ab8f71f6a53ccb

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 84671b0630ccb46ae9f1f99a45c7d63ffcd6a474

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 68f16d3034a06661245ecd22f0d586a8b4e7c473

References

https://git.kernel.org/stable/c/6c26619effb1b4cb7d20b4e66...

https://git.kernel.org/stable/c/84671b0630ccb46ae9f1f99a4...

https://git.kernel.org/stable/c/68f16d3034a06661245ecd22f...

Timeline

Vulnerability published
Mar 6, 2025
Vulnerability Reserved
Dec 29, 2024