CVE-2025-39909— mm/damon/lru_sort: avoid divide-by-zero in damon_lru_sort_apply_parameters()
Affected Version Matrix 12
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 40e983cca9274e177bd5b9379299b44d9536ac68< 74e391f7da7d9d5235a3cca88ee9fc18f720c75b | affected |
40e983cca9274e177bd5b9379299b44d9536ac68< 7bb675c9f0257840d33e5d1337d7e3afdd74a6bf | affected | ||
40e983cca9274e177bd5b9379299b44d9536ac68< af0ae62b935317bed1a1361c8c9579db9d300e70 | affected | ||
40e983cca9274e177bd5b9379299b44d9536ac68< 326a4b3750c71af3f3c52399ec4dbe33b6da4c26 | affected | ||
40e983cca9274e177bd5b9379299b44d9536ac68< 711f19dfd783ffb37ca4324388b9c4cb87e71363 | affected | ||
6.0 | affected | ||
< 6.0 | unaffected | ||
6.1.153≤ 6.1.* | unaffected | ||
| … +4 more rows | |||
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-39909
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
mm/damon/lru_sort: avoid divide-by-zero in damon_lru_sort_apply_parameters()
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: mm/damon/lru_sort: avoid divide-by-zero in damon_lru_sort_apply_parameters() Patch series "mm/damon: avoid divide-by-zero in DAMON module's parameters application". DAMON's RECLAIM and LRU_SORT modules perform no validation on user-configured parameters during application, which may lead to division-by-zero errors. Avoid the divide-by-zero by adding validation checks when DAMON modules attempt to apply the parameters. This patch (of 2): During the calculation of 'hot_thres' and 'cold_thres', either 'sample_interval' or 'aggr_interval' is used as the divisor, which may lead to division-by-zero errors. Fix it by directly returning -EINVAL when such a case occurs. Additionally, since 'aggr_interval' is already required to be set no smaller than 'sample_interval' in damon_set_attrs(), only the case where 'sample_interval' is zero needs to be checked.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于未验证用户配置参数,可能导致除零错误。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2025-39909
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-39909
请登录查看更多情报信息。
Same Patch Batch · Linux · 2025-10-01 · 169 CVEs total
| CVE-2022-50462 | MIPS: vpe-mt: fix possible memory leak while module exiting | |
| CVE-2022-50452 | net: sched: cake: fix null pointer access issue when cake_init() fails | |
| CVE-2022-50451 | fs/ntfs3: Fix memory leak on ntfs_fill_super() error path | |
| CVE-2022-50453 | gpiolib: cdev: fix NULL-pointer dereferences | |
| CVE-2022-50454 | drm/nouveau: fix a use-after-free in nouveau_gem_prime_import_sg_table() | |
| CVE-2022-50457 | mtd: core: Fix refcount error in del_mtd_device() | |
| CVE-2022-50456 | btrfs: fix resolving backrefs for inline extent followed by prealloc | |
| CVE-2022-50458 | clk: tegra: Fix refcount leak in tegra210_clock_init | |
| CVE-2022-50460 | cifs: Fix xid leak in cifs_flock() | |
| CVE-2022-50459 | scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername() | |
| CVE-2022-50461 | net: ethernet: ti: am65-cpsw: Fix PM runtime leakage in am65_cpsw_nuss_ndo_slave_open() | |
| CVE-2022-50467 | scsi: lpfc: Fix null ndlp ptr dereference in abnormal exit path for GFT_ID | |
| CVE-2023-53488 | IB/hfi1: Fix possible panic during hotplug remove | |
| CVE-2023-53489 | tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp. | |
| CVE-2022-50469 | staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw() | |
| CVE-2022-50468 | platform/chrome: cros_usbpd_notify: Fix error handling in cros_usbpd_notify_init() | |
| CVE-2022-50465 | ext4: fix leaking uninitialized memory in fast-commit journal | |
| CVE-2022-50463 | powerpc/52xx: Fix a resource leak in an error handling path | |
| CVE-2022-50464 | mt76: mt7915: Fix PCI device refcount leak in mt7915_pci_init_hif2() | |
| CVE-2022-50448 | mm/uffd: fix warning without PTE_MARKER_UFFD_WP compiled in |
Showing top 20 of 169 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Linux
- CVE-2026-46333
ptrace: slightly saner 'get_dumpable()' logic - CVE-2026-43490
ksmbd: validate inherited ACE SID length - CVE-2026-43489
liveupdate: luo_file: remember retrieve() status - CVE-2026-43487
ata: libata-core: Disable LPM on ST1000DM010-2EP102 - CVE-2026-43488
usb: xhci: Prevent interrupt storm on host controller error
Same vendor: Linux
- CVE-2026-46333
ptrace: slightly saner 'get_dumpable()' logic - CVE-2026-43490
ksmbd: validate inherited ACE SID length - CVE-2026-43489
liveupdate: luo_file: remember retrieve() status - CVE-2026-43487
ata: libata-core: Disable LPM on ST1000DM010-2EP102 - CVE-2026-43488
usb: xhci: Prevent interrupt storm on host controller error
V. Comments for CVE-2025-39909
No comments yet