Linux Kernel Vulnerability in Landlock Handling of Files
CVE-2025-21830

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 6 March 2025

Summary

A vulnerability exists in the Linux kernel's Landlock feature where corrupted filesystem structures, such as those in bcachefs, could be treated as regular files. This anomalous behavior bypasses necessary warnings and allows access to potentially unsafe files, posing a risk to system integrity. Proper mitigation strategies must be implemented to ensure that access to such corrupted files is handled appropriately.

Affected Version(s)

Linux cb2c7d1a1776057c9a1f48ed1250d85e94d4850d < 7d6121228959ddf44a4b9b6a177384ac7854e2f9

Linux cb2c7d1a1776057c9a1f48ed1250d85e94d4850d < 39bb3d56f1c351e76bb18895d0e73796e653d5c1

Linux cb2c7d1a1776057c9a1f48ed1250d85e94d4850d < 2569e65d2eb6ac1afe6cb6dfae476afee8b6771a

References

https://git.kernel.org/stable/c/7d6121228959ddf44a4b9b6a1...

https://git.kernel.org/stable/c/39bb3d56f1c351e76bb18895d...

https://git.kernel.org/stable/c/2569e65d2eb6ac1afe6cb6dfa...

Timeline

Vulnerability published
Mar 6, 2025
Vulnerability Reserved
Dec 29, 2024