Kernel Panic Vulnerability in Linux Kernel Affecting File Systems
CVE-2025-40196

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 12 November 2025

What is CVE-2025-40196?

A vulnerability in the Linux kernel can lead to kernel panic situations, particularly in scenarios involving file system quota handling. This panic occurs when a sync call is triggered for an opened file, initiating a writeback process. The issue arises from a mismatch of queue flags, leading to a failure in flushing the quota_release_work. The patch introduces a dedicated workqueue with the appropriate WQ_MEM_RECLAIM flag to resolve the issue, preventing unnecessary kernel panic caused by quota-related operations.

Affected Version(s)

Linux bcacb52a985f1b6d280f698a470b873dfe52728a

Linux 8ea87e34792258825d290f4dc5216276e91cb224

Linux ac6f420291b3fee1113f21d612fa88b628afab5b < 8a09a62f0c8c6123c2f1864ed6d5f9eb144afaf0

References

https://git.kernel.org/stable/c/f846eacde280ecc3daedfe001...

https://git.kernel.org/stable/c/f12039df1515d5daf7d92e586...

https://git.kernel.org/stable/c/8a09a62f0c8c6123c2f1864ed...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2025
Vulnerability Reserved
Apr 16, 2025

JSON