CVE-2026-46161
published 2026-05-28CVE-2026-46161: In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix divide-by-zero in setup_geo() with zero far_copies setup_geo() extracts…
medium5.5
In the Linux kernel, the following vulnerability has been resolved:
md/raid10: fix divide-by-zero in setup_geo() with zero far_copies
setup_geo() extracts near_copies (nc) and far_copies (fc) from the
user-provided layout parameter without checking for zero. When fc=0
with the "improved" far set layout selected, 'geo->far_set_size =
disks / fc' triggers a divide-by-zero.
Validate nc and fc immediately after extraction, returning -1 if
either is zero.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | >= 475901aff15841fb0a81e7546517407779a9b061 < 0b43a70394ce492274e67463326be03e0a9897c5 | 0b43a70394ce492274e67463326be03e0a9897c5 |
| linux | linux | >= 475901aff15841fb0a81e7546517407779a9b061 < c716ab3034f84f8a6c226814247b8c5ac9f95da1 | c716ab3034f84f8a6c226814247b8c5ac9f95da1 |
| linux | linux | >= 475901aff15841fb0a81e7546517407779a9b061 < 553e32adfa1a96b217651139a3f8c3b92b9984ac | 553e32adfa1a96b217651139a3f8c3b92b9984ac |
| linux | linux | >= 475901aff15841fb0a81e7546517407779a9b061 < 4af2e558e6fdfb972c61350653fd55d1f62b60a5 | 4af2e558e6fdfb972c61350653fd55d1f62b60a5 |
| linux | linux | >= 475901aff15841fb0a81e7546517407779a9b061 < 9d8e03b9a2b1e8ce5c198bf3a409a629f4d02cda | 9d8e03b9a2b1e8ce5c198bf3a409a629f4d02cda |
| linux | linux | >= 475901aff15841fb0a81e7546517407779a9b061 < 913d556e4bd1b56ed822815655b82c7bb54edc51 | 913d556e4bd1b56ed822815655b82c7bb54edc51 |
| linux | linux | >= 475901aff15841fb0a81e7546517407779a9b061 < f9ddb621b2325eb69c95692958daf2bab4dea2c4 | f9ddb621b2325eb69c95692958daf2bab4dea2c4 |
| linux | linux | >= 475901aff15841fb0a81e7546517407779a9b061 < 9aa6d860b0930e2f72795665c42c44252a558a0c | 9aa6d860b0930e2f72795665c42c44252a558a0c |
| linux | linux_kernel | — | — |