CVE-2025-39717

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in open tree attr that allows bypassing a restriction intended to prevent id-mapping changes without the OPEN TREE CLONE flag. This bypass was introduced by a bug in commit 2462651ffa76. While can idmap mount() prevented modification of id-mappings on attached mountpoints, it did not prevent changes on detached (but visible) mounts, potentially leading to use-after-free (UAF) and locking issues.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.