CVE-2025-39793

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The Linux kernel contains an issue in the io uring/memmap component where the nr pages value is not cast to size t before shifting, potentially leading to an overflow if the allocated size exceeds UINT MAX. While the required memory size is typically validated upfront and limited by user locked vm settings, the issue can occur when root privileges are used, bypassing accounting mechanisms.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.