Linux Kernel Vulnerability Impacting Id-Mapping Changes by Open Tree Attribute
CVE-2025-39717

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 5 September 2025

What is CVE-2025-39717?

A vulnerability in the Linux kernel allows for unauthorized modifications to id-mappings via open_tree_attr(2) without the required OPEN_TREE_CLONE flag. This inconsistency stems from a flaw where users can bypass safeguards meant to prevent changes to id-mappings, specifically in detached mounts. The issue raises concerns regarding potential use-after-free and locking problems, as previously outlined in related commits. Admins should be vigilant about this security risk and ensure they are using patched versions of the Linux kernel.

Affected Version(s)

Linux 2462651ffa76b87f9c2e4403ef6e6b89b703fb2f < 69dbdc711d9130136824e3830191a6afffa0a1f0

Linux 2462651ffa76b87f9c2e4403ef6e6b89b703fb2f < 9308366f062129d52e0ee3f7a019f7dd41db33df

Linux 6.15

References

https://git.kernel.org/stable/c/69dbdc711d9130136824e3830...

https://git.kernel.org/stable/c/9308366f062129d52e0ee3f7a...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 5, 2025
Vulnerability Reserved
Apr 16, 2025