Bug Bounty

A vulnerability exists in the Linux kernel related to the block device management where the 'chunk_sectors' value may lead to an overflow due to inappropriate handling of values in bytes. The function 'blk_stack_limits()' originally validates that 'chunk_sectors' is a multiple of the 'physical_block_size.' However, the validation logic has been corrected to operate based on sector values, thereby mitigating the risk of overflow in the unsigned integer that stores 'chunk_sectors.' This ensures enhanced stability and security in the kernel's handling of block devices.

https://securityvulnerability.io/vulner ... 2025-39795