PT-2025-46613 · Linux+3 · Linux Kernel+3

Published

2025-08-18

Updated

2026-02-24

CVE-2025-40138

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc1-syzkaller-00014-g0e39a731820a

Description The Linux kernel contains a flaw in the f2fs filesystem implementation. Specifically, a NULL pointer dereference can occur within the f2fs check quota consistency() function. This issue arises when comparing quota names without first verifying that they are valid pointers. The problem was identified through syzbot testing and can be triggered by mounting the f2fs filesystem with user quotas enabled, running quotacheck, and then remounting the filesystem with different quota options. The strcmp function is involved in the vulnerability.

Recommendations Update to Linux kernel version 6.17.0-rc1-syzkaller-00014-g0e39a731820a or a later version that includes the fix.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BDU:2025-16140

CVE-2025-40138

USN-8029-1

USN-8029-2

USN-8029-3

USN-8030-1

USN-8048-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

F2Fs

PT-2025-46613 · Linux+3 · Linux Kernel+3

CVE-2025-40138

Weakness Enumeration

Related Identifiers

Affected Products

References · 391