CVE-2025-38333

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified)

Description: The Linux kernel contains a flaw within the get new segment() function in the f2fs filesystem. The function may detect an inconsistent status between free segment map and free section map, leading to an error. The fix involves recording the error in the superblock and exiting the get new segment() function to prevent further use of the segment.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

AZL-64889

BDU:2025-13460

CVE-2025-38333

ECHO-FE1A-EF12-2E74

OESA-2025-2532

OESA-2025-2536

OESA-2025-2537

USN-7833-1

USN-7833-2

USN-7833-3

USN-7833-4

USN-7834-1

USN-7856-1

USN-8028-1

USN-8028-2

USN-8028-3

USN-8028-4

USN-8028-5

USN-8028-6

USN-8028-7

USN-8028-8

USN-8031-1

USN-8031-2

USN-8031-3

USN-8052-1

USN-8052-2

USN-8074-1

USN-8074-2

USN-8126-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

F2Fs

CVE-2025-38333

Weakness Enumeration

Related Identifiers

Affected Products

References · 1325