Description

In the Linux kernel, the following vulnerability has been resolved: iommufd: Don't overflow during division for dirty tracking If pgshift is 63 then BITS_PER_TYPE(*bitmap->bitmap) * pgsize will overflow to 0 and this triggers divide by 0. In this case the index should just be 0, so reorganize things to divide by shift and avoid hitting any overflows.

INFO

Published Date :

2025-12-08T00:46:16.850Z

Last Modified :

2025-12-08T00:46:16.850Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-40293 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-40293.

URL Resource
https://git.kernel.org/stable/c/07105e61882ff4a7d58db63cc5f9e90c6c60506c cve-icon cve-icon
https://git.kernel.org/stable/c/4c8a4f1d34eced168cc0b3a3dfe7b6dcc2090f69 cve-icon cve-icon
https://git.kernel.org/stable/c/cb30dfa75d55eced379a42fd67bd5fb7ec38555e cve-icon cve-icon
https://git.kernel.org/stable/c/dbf316fc90aa954dcd5440817f4b944627ed63e0 cve-icon cve-icon
https://git.kernel.org/stable/c/de7f2c67ceb1941b05b04ac35458a03e93cc57b1 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025120818-CVE-2025-40293-cfe7@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-40293 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-40293 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact