PT-2025-27993 · Linux+5 · Linux Kernel+5

Published

2025-07-04

·

Updated

2026-04-20

·

CVE-2025-38218

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.15.0-rc1+ #191
Description: A vulnerability in the Linux kernel has been resolved, which could lead to a kernel panic when mounting a corrupted image. The issue occurs due to inconsistent metadata in the image, causing an out-of-bounds access in the sit bitmap. This happens when the sit bitmap size is too small, resulting in an incorrect calculation of the sit blk cnt. The vulnerability can be triggered by resizing an image, which generates a corrupted image that, when mounted, causes a kernel panic.
Recommendations: For Linux kernel versions prior to 6.15.0-rc1+ #191, update to a newer version that includes the fix for the sanity check on sit bitmap size to avoid the kernel panic. As a temporary workaround, consider avoiding the use of the resize functionality until a patch is available. Restrict access to the f2fs file system to minimize the risk of exploitation.

Exploit

Fix

Improper Resource Release

Weakness Enumeration

CWE-404

Related Identifiers

AZL-64677
BDU:2025-13477
CVE-2025-38218
DLA-4327-1
DLA-4328-1
DSA-5973-1
ECHO-E38C-A187-829F
MGASA-2025-0218
MGASA-2025-0219
USN-7774-1
USN-7774-2
USN-7774-3
USN-7774-4
USN-7774-5
USN-7775-1
USN-7775-2
USN-7775-3
USN-7776-1
USN-7833-1
USN-7833-2
USN-7833-3
USN-7833-4
USN-7834-1
USN-7856-1
USN-8028-1
USN-8028-2
USN-8028-3
USN-8028-4
USN-8028-5
USN-8028-6
USN-8028-7
USN-8028-8
USN-8031-1
USN-8031-2
USN-8031-3
USN-8052-1
USN-8052-2
USN-8074-1
USN-8074-2
USN-8126-1

Affected Products

Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Ubuntu