Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: io_uring: fix regbuf vector size truncation There is a report of io_estimate_bvec_size() truncating the calculated number of segments that leads to corruption issues. Check it doesn't overflow "int"s used later. Rough but simple, can be improved on top.
References
- https://git.kernel.org/stable/c/146eb58629f45f8297e83d69e64d4eea4b28d972
- https://git.kernel.org/stable/c/826ce37a842633efe1bb763e4b13045d74060d72
FAQ
What is CVE-2025-40291?
CVE-2025-40291 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: io_uring: fix regbuf vector size truncation There is a report of io_estimate_bvec_size() truncating the calculated number of segme...
How severe is CVE-2025-40291?
CVSS scoring is not yet available for CVE-2025-40291. Check NVD for updates.
Is there a patch for CVE-2025-40291?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.