CVE-2025-71265

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the ntfs3 file system within the Linux kernel that can lead to a Denial-of-Service (DoS) condition. A malformed NTFS image can trigger an infinite loop when an attribute header indicates an empty run list, while directory entries reference it as containing data. Specifically, the issue arises from metadata inconsistency where the attribute header claims emptiness (evcn=-1, svcn=0) but the caller expects data. The run unpack() function returns success prematurely, leaving the runs tree uninitialized. The attr load runs range() function then assumes runs were loaded and expects subsequent calls to run lookup entry() to succeed, resulting in an infinite loop because run lookup entry() continuously fails and increments vcn by zero (vcn += 0). The issue is addressed by adding a retry counter to detect consecutive failures in run lookup entry() after attr load runs vcn(). If the run is not found on the second attempt, the function returns -EINVAL, preventing the DoS.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.