CVE-2025-68350
Description
In the Linux kernel, the following vulnerability has been resolved:
exfat: fix divide-by-zero in exfat_allocate_bitmap
The variable max_ra_count can be 0 in exfat_allocate_bitmap(), which causes a divide-by-zero error in the subsequent modulo operation (i % max_ra_count), leading to a system crash. When max_ra_count is 0, it means that readahead is not used. This patch load the bitmap without readahead.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A divide-by-zero bug in the Linux kernel's exfat filesystem driver can crash the system when readahead count is zero during bitmap allocation.
Vulnerability
In the Linux kernel's exfat filesystem driver, the function exfat_allocate_bitmap() contains a divide-by-zero vulnerability. The variable max_ra_count can be zero, leading to a division by zero in the modulo operation i % max_ra_count, which causes a system crash [1].
Exploitation
An attacker with the ability to mount or manipulate an exFAT filesystem could trigger this condition. No special privileges beyond filesystem access are required. The bug occurs during bitmap allocation when readahead is not used, making max_resulting in max_ra_count` being zero [1].
Impact
Impact
Successful exploitation results in a denial of service (system crash) due to the divide-by-zero error. The kernel panics, causing immediate system instability or crash [1].
Mitigation
The fix has been applied in the Linux kernel stable tree. The patch checks for max_ra_count == 0 and loads the bitmap without readahead in that case [1]. Users should update to a kernel version containing this commit.
AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.