Linux Kernel iomap Truncation Vulnerability Leading to Infinite Loop on xfs Filesystem

Vulnerability

A vulnerability in the Linux kernel's iomap implementation could cause an infinite loop when writing to an xfs filesystem on 32-bit kernels. This issue arises because iomap_write_delalloc_scan() incorrectly uses a 32-bit position, leading to the truncation of 64-bit offsets. The problem is caused by folio_next_index() returning an unsigned long, which on 32-bit systems, is effectively a 32-bit value. The vulnerability has been addressed in the Linux kernel.

Impact

Exploitation of this vulnerability could result in an infinite loop, causing a denial of service by hanging the writing process.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

Linux Kernel iomap Truncation Vulnerability Leading to Infinite Loop on xfs Filesystem

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating