Software Bug in Linux Kernel Affecting JFS Inodes Handling
CVE-2025-37925

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 April 2025

Summary

This vulnerability arises from a flaw in the Linux Kernel's handling of JFS inodes, specifically when the function 'clear_inode()' attempts to finalize an inode of an unsupported type. Inodes from 5 to 15 are reserved for future use and should not be encountered in a valid filesystem, leading to a runtime error. The vulnerability has been addressed in updates, but users should verify their kernel version to ensure they are protected against potential exploitation.

Affected Version(s)

Linux 79ac5a46c5c1c17476fbf84b4d4600d6d565defd < 8987891c4653874d5e3f5d11f063912f4e0b58eb

Linux 79ac5a46c5c1c17476fbf84b4d4600d6d565defd < 8c3f9a70d2d4dd6c640afe294b05c6a0a45434d9

Linux 3.1

References

https://git.kernel.org/stable/c/8987891c4653874d5e3f5d11f...

https://git.kernel.org/stable/c/8c3f9a70d2d4dd6c640afe294...

Timeline

Vulnerability published
Apr 18, 2025
Vulnerability Reserved
Apr 16, 2025