PT-2025-44112 · Linux+4 · Linux Kernel+4
Published
2025-09-22
·
Updated
2026-05-07
·
CVE-2025-40044
CVSS v2.0
4.6
Medium
| Vector | AV:L/AC:L/Au:S/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.12.0-rc4-syzkaller-00261-g850925a8133c
Description
The Linux kernel contains a flaw within the UDF filesystem implementation. Specifically, the handling of Allocation Extent Descriptors lacks proper validation of the
lengthAllocDescs value against the block size. This can lead to a buffer over-read when parsing corrupted or crafted images, potentially triggering a use-after-free read condition via the crc itu t() function. The issue was discovered by the Linux Verification Center using Syzkaller. The vulnerability occurs when parsing Allocation Extent Descriptor, where lengthAllocDescs comes from on-disk data and must be validated against the block size.Recommendations
Update to version 6.12.0-rc4-syzkaller-00261-g850925a8133c or later.
Exploit
Fix
Use After Free
Buffer Overflow
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Debian
Linuxmint
Linux Kernel
Suse
Ubuntu