Vulnerability in Linux Kernel Affecting OCFS2 File System from Oracle
CVE-2025-40233

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 December 2025

What is CVE-2025-40233?

In a recent Linux kernel vulnerability, the OCFS2 file system experiences issues due to a stale extent map cache when extents are moved or defragmented. Specifically, operations such as reflinking and trimming have led to a situation where the memory cached extent flags do not reflect the updated state on disk. Consequently, write operations referencing outdated cached flags can cause operational failures, triggering critical error conditions. The resolution involves ensuring that the extent map cache is appropriately cleared after each move or defrag operation, guaranteeing that subsequent file operations access the most current extent data from disk.

Affected Version(s)

Linux 53069d4e76954e2e63c1b3c501051c6fbcf7298c < 93166bc53c0e3587058327a4121daea34b4fecd5

Linux 53069d4e76954e2e63c1b3c501051c6fbcf7298c

Linux 53069d4e76954e2e63c1b3c501051c6fbcf7298c < 93b1ab422f1966b71561158e1aedce4ec100f357

References

https://git.kernel.org/stable/c/93166bc53c0e3587058327a41...

https://git.kernel.org/stable/c/a7ee72286efba1d407c6f15a0...

https://git.kernel.org/stable/c/93b1ab422f1966b71561158e1...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2025
Vulnerability Reserved
Apr 16, 2025

JSON