CVE-2025-22124

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-22124

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-22124.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-22124

Downstream

BELL-CVE-2025-22124

DEBIAN-CVE-2025-22124

DSA-6008-1

SUSE-SU-2025:01964-1

SUSE-SU-2025:01965-1

SUSE-SU-2025:02923-1

UBUNTU-CVE-2025-22124

USN-7594-1

USN-7594-2

USN-7594-3

Related

Published

2025-04-16T15:16:06Z

Modified

2025-09-09T17:15:42Z

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

md/md-bitmap: fix wrong bitmap_limit for clustermd when write sb

In clustermd, separate write-intent-bitmaps are used for each cluster node:

0 4k 8k 12k

| idle | md super | bm super [0] + bits | | bm bits[0, contd] | bm super[1] + bits | bm bits[1, contd] | | bm super[2] + bits | bm bits [2, contd] | bm super[3] + bits | | bm bits [3, contd] | | |

So in node 1, pgindex in _writesbpage() could equal to bitmap->storage.filepages. Then bitmaplimit will be calculated to 0. mdsuperwrite() will be called with 0 size. That means the first 4k sb area of node 1 will never be updated through filemapwritepage(). This bug causes hang of mdadm/clustermdtests/01r1Grow_resize.

Here use (pgindex % bitmap->storage.filepages) to make calculation of bitmap_limit correct.

References

Affected packages