Linux Kernel Vulnerability Affecting NTFS3 Records
CVE-2025-40313

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 December 2025

What is CVE-2025-40313?

The vulnerability in the Linux kernel pertains to the NTFS3 file system, where $Extend records were incorrectly handled as regular files due to improper inode type validation. Following recent updates, the kernel now ensures that any inode must conform to specific types—such as directories and regular files—by adjusting the handling of $Extend records to be treated as the regular file type (S_IFREG). This change addresses potential security concerns related to file system manipulation and enhances the overall integrity and reliability of file operations within the Linux environment.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 63eb6730ce0604d3eacf036c2f68ea70b068317c

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 78d46f5276ed3589aaaa435580068c5b62efc921

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 17249b2a65274f73ed68bcd1604e08a60fd8a278

References

https://git.kernel.org/stable/c/63eb6730ce0604d3eacf036c2...

https://git.kernel.org/stable/c/78d46f5276ed3589aaaa43558...

https://git.kernel.org/stable/c/17249b2a65274f73ed68bcd16...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Apr 16, 2025

JSON