Linux Kernel Vulnerability Affecting Ceph Product by Linux
CVE-2025-38223

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
4 July 2025

What is CVE-2025-38223?

A vulnerability was identified in the Linux Kernel related to the Ceph file system, which can trigger a kernel BUG when handling encrypted inodes with unaligned file sizes. This issue can occur, for example, with file sizes like 33K or 1K. The bug manifests during certain file system tests, leading to unexpected behavior and could potentially affect system stability. Users are advised to upgrade to the latest kernel version that resolves this issue to ensure the security and reliability of their systems.

Affected Version(s)

Linux ee4cdf7ba857a894ad1650d6ab77669cbbfa329e < 75583606aeef357a524cf6afd07f4b653ae48964

Linux ee4cdf7ba857a894ad1650d6ab77669cbbfa329e < 26725a76264b97d1ff104031b78da57f47741625

Linux ee4cdf7ba857a894ad1650d6ab77669cbbfa329e < 060909278cc0a91373a20726bd3d8ce085f480a9

References

https://git.kernel.org/stable/c/75583606aeef357a524cf6afd...
https://git.kernel.org/stable/c/26725a76264b97d1ff104031b...
https://git.kernel.org/stable/c/060909278cc0a91373a20726b...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-38223 : Linux Kernel Vulnerability Affecting Ceph Product by Linux