CVE-2025-21667

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.127 Linux kernel versions prior to 6.6.74 Linux kernel versions prior to 6.12.11

Description The issue is related to the iomap write delalloc scan() function in the Linux kernel, which can lead to an infinite loop due to numerical truncation when writing to an xfs filesystem on 32-bit kernels. This occurs because folio next index() returns an unsigned long, causing iomap write delalloc scan() to inadvertently use a 32-bit position. The estimated number of potentially affected devices is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For Linux kernel versions prior to 6.1.127, update to version 6.1.127 or later to resolve the issue. For Linux kernel versions prior to 6.6.74, update to version 6.6.74 or later to resolve the issue. For Linux kernel versions prior to 6.12.11, update to version 6.12.11 or later to resolve the issue. As a temporary workaround, consider avoiding writing to xfs filesystems on 32-bit kernels until the issue is resolved.