CVE-2025-21874: 
Linux Kernel vulnerability analysis and mitigation

CVE-2025-21874 is a vulnerability discovered in the Linux kernel's dm-integrity component, specifically affecting the table status functionality in Inline mode. The vulnerability was disclosed on March 27, 2025. The issue occurs when the journal is unused and journal_sectors is zero in Inline mode, leading to a potential divide by zero condition (NVD Database, Red Hat Security).

The vulnerability manifests when calculating the journal watermark in Inline mode, where journalsectors is zero and the journal is unused. When attempting to divide by journalsectors without proper validation, it triggers a divide by zero error. The vulnerability has been assigned a CVSS v3.1 score of 5.5 with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H, indicating a moderate severity level (Red Hat Security).

When exploited, this vulnerability can cause a system crash through an OOPS error. On affected systems, particularly 32-bit testing machines, the vulnerability reliably crashes with a divide error: 0000 [#1] PREEMPT SMP error, affecting the CPU 0 with PID 2450 in the dmsetup process (NVD Database).

Red Hat has acknowledged the vulnerability and marked it as 'Fix deferred' for Red Hat Enterprise Linux 9 and kernel-rt packages. Other versions of Red Hat Enterprise Linux (6, 7, and 8) are not affected by this vulnerability (Red Hat Security).