PT-2025-44092 · Linux+1 · Linux Kernel+1

Published

2025-08-23

Updated

2026-05-26

CVE-2025-40025

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc1-syzkaller-00211-g90d970cade8e

Description The Linux kernel's f2fs filesystem contained a flaw where a non-inode dnode could have the same footer information as an inode. This could lead to an incorrect block address count being calculated within the f2fs truncate hole() function, potentially triggering a kernel panic. The issue stemmed from a lack of proper sanity checks on node footers for non-inode dnodes. The fix introduces a new node type, NODE TYPE NON INODE, and enhances the sanity check node footer() function to detect this corruption. The issue was discovered by syzbot during fuzzing.

Recommendations Update to Linux kernel version 6.17.0-rc1-syzkaller-00211-g90d970cade8e or a later version that includes the fix.

Exploit

Fix

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

BDU:2025-13602

CVE-2025-40025

ECHO-327A-89DC-BB65

OPENSUSE-SU-2025:15702-1

OPENSUSE-SU-2026:10301-1

USN-7906-1

USN-7906-2

USN-7906-3

Affected Products

Debian

Linux Kernel

PT-2025-44092 · Linux+1 · Linux Kernel+1

CVE-2025-40025

Weakness Enumeration

Related Identifiers

Affected Products

References · 235