SB20250916289 - Division by zero in Linux kernel hw hfi1 driver
Published: September 16, 2025
Security Bulletin ID
SB20250916289
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Division by zero (CVE-ID: CVE-2025-39742)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a division by zero error within the find_hw_thread_mask() function in drivers/infiniband/hw/hfi1/affinity.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/1a7cf828ed861de5be1aff99e10f114b363c19d3
- https://git.kernel.org/stable/c/31d0599a23efdbfe579bfbd1eb8f8c942f13744d
- https://git.kernel.org/stable/c/4b4317b0d758ff92ba96f4e448a8992a6fe607bf
- https://git.kernel.org/stable/c/59f7d2138591ef8f0e4e4ab5f1ab674e8181ad3a
- https://git.kernel.org/stable/c/89fdac333a17ed990b41565630ef4791782e02f5
- https://git.kernel.org/stable/c/9b05e91afe948ed819bf87d7ba0fccf451ed79a6
- https://git.kernel.org/stable/c/9bba1a9994c523b44db64f63b564b4719ea2b7ef
- https://git.kernel.org/stable/c/9d3211cb61a0773a2440d0a0698c1e6e7429f907
- https://git.kernel.org/stable/c/ac53f377393cc85156afdc90b636e84e544a6f96