Linux Kernel Vulnerability in 9p Network Protocol Handling
CVE-2025-37879

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 9 May 2025

Summary

A vulnerability exists in the Linux kernel's handling of the 9p network protocol. In functions p9_client_write() and p9_client_read_once(), the server's negligent response of a negative count for read or write operations doesn't get handled correctly. Due to the use of signed variables, the system would misinterpret a negative count as valid if it was less than a positive read size. Changing these variables to unsigned will rectify the issue, ensuring proper validation and avoiding potential null pointer dereference errors. The flaw has been fixed, but the implications could have led to unexpected behavior and instability in the handling of the 9p protocol.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 468ff4a7c61fb811c596a7c44b6a5455e40fd12b

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/468ff4a7c61fb811c596a7c44...

https://git.kernel.org/stable/c/a68768e280b7d0c967ea509e7...

https://git.kernel.org/stable/c/c548f95688e2b5ae0e2ae43d5...

Timeline

Vulnerability published
May 9, 2025
Vulnerability Reserved
Apr 16, 2025