CVE-2025-68794
BaseFortify
Publication date: 2026-01-13
Last updated on: 2026-01-14
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is in the Linux kernel's iomap subsystem, specifically in the function iomap_adjust_read_range(). The function incorrectly assumes that the position and length parameters are block-aligned, which is not always true. This causes the function to skip too many bytes for uptodate blocks, resulting in incorrect position and length values being returned for reading. In cases where all blocks are uptodate, the length underflows and the position returned goes beyond the folio. The fix involves adjusting the calculation to consider the block offset properly when determining how many bytes to skip.
How can this vulnerability impact me? :
The vulnerability can cause incorrect read operations in the Linux kernel's iomap subsystem, potentially leading to reading incorrect data or data corruption due to wrong position and length calculations. This may affect system stability or data integrity when accessing filesystems that trigger this condition.