Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/kbuf: always use READ_ONCE() to read ring provided buffer lengths Since the buffers are mapped from userspace, it is prudent to use READ_ONCE() to read the value into a local variable, and use that for any other actions taken. Having a stable read of the buffer length avoids worrying about it changing after checking, or being read multiple times. Similarly, the buffer may well change in between it being picked and being committed. Ensure the looping for incremental ring buffer commit stops if it hits a zero sized buffer, as no further progress can be made at that point.

INFO

Published Date :

2025-09-16T13:00:17.026Z

Last Modified :

2026-04-11T12:45:38.325Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-39816 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-39816.

URL Resource
https://git.kernel.org/stable/c/390a61d284e1ced088d43928dfcf6f86fffdd780 cve-icon cve-icon
https://git.kernel.org/stable/c/695673eb5711ee5eb1769481cf1503714716a7d1 cve-icon cve-icon
https://git.kernel.org/stable/c/91f262ea2a76a02d9e37dba6637cfe6feebb20a8 cve-icon cve-icon
https://git.kernel.org/stable/c/98b6fa62c84f2e129161e976a5b9b3cb4ccd117b cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025091615-CVE-2025-39816-f21d@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-39816 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-39816 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact