CVE-2025-39822

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-39822

Severity

Unknown

Summary

io_uring/kbuf: fix signedness in this_len calculation

Description

In the Linux kernel, the following vulnerability has been resolved:

io_uring/kbuf: fix signedness in this_len calculation

When importing and using buffers, buf->len is considered unsigned. However, buf->len is converted to signed int when committing. This can lead to unexpected behavior if the buffer is large enough to be interpreted as a negative value. Make min_t calculation unsigned.

References

https://images.chainguard.dev/security/CGA-875m-mw79-9xx9
https://github.com/advisories/GHSA-5xmf-424g-jjhg
https://images.chainguard.dev/security/CGA-5qqf-8rr7-hgm5
https://images.chainguard.dev/security/CGA-qxmh-3c6r-gvfh
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
https://git.kernel.org/stable/c/c64eff368ac676e8540344d27a3de47e0ad90d21
https://git.kernel.org/stable/c/f4f411c068402c370c4f9a9d4950a97af97bbbb1

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CVE-2025-39822

Severity

Summary

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company