PT-2025-9002 · Linux+6 · Linux Kernel+6

Ryusuke Konishi

·

Published

2025-01-08

·

Updated

2026-04-20

·

CVE-2025-21811

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A issue in the Linux kernel has been identified, specifically in the nilfs2 component. The nilfs lookup dirty data buffers() function accesses buffers attached to dirty data folios/pages without proper locking, potentially leading to use after free issues. This can occur when nilfs clear folio dirty() is called asynchronously, causing buffers to lose their dirty state protection and be unintentionally freed by try to free buffers(). The problem arises from a race condition that has been addressed by adjusting the lock section in the nilfs lookup dirty data buffers() function.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2025-12647
ALT-PU-2025-4689
ALT-PU-2025-5012
ALT-PU-2025-5359
ALT-PU-2025-5361
ALT-PU-2025-5437
BDU:2025-12081
CVE-2025-21811
DLA-4102-1
DLA-4178-1
OESA-2025-1339
OESA-2025-1340
USN-7510-1
USN-7510-2
USN-7510-3
USN-7510-4
USN-7510-5
USN-7510-6
USN-7510-7
USN-7510-8
USN-7511-1
USN-7511-2
USN-7511-3
USN-7512-1
USN-7516-1
USN-7516-2
USN-7516-3
USN-7516-4
USN-7516-5
USN-7516-6
USN-7516-7
USN-7516-8
USN-7516-9
USN-7517-1
USN-7517-2
USN-7517-3
USN-7518-1
USN-7521-1
USN-7521-2
USN-7521-3
USN-7539-1
USN-7540-1
USN-7593-1
USN-7602-1
USN-7640-1
USN-7651-1
USN-7651-2
USN-7651-3
USN-7651-4
USN-7651-5
USN-7651-6
USN-7652-1
USN-7653-1
USN-7737-1
USN-7907-1
USN-7907-2
USN-7907-3
USN-7907-4
USN-7907-5
USN-7930-1
USN-7930-2
USN-7937-1

Affected Products

Alt Linux
Astra Linux
Debian
Linuxmint
Linux Kernel
Red Os
Ubuntu