CVE-2025-40291

In the Linux kernel, the following vulnerability has been resolved:

io_uring: fix regbuf vector size truncation

There is a report of io_estimate_bvec_size() truncating the calculated
number of segments that leads to corruption issues. Check it doesn’t
overflow “int”s used later. Rough but simple, can be improved on top.

More information : https://git.kernel.org/stable/c/146eb58629f45f8297e83d69e64d4eea4b28d972