Infinite Loop Vulnerability in Linux Kernel for EROFS Subpage Compact Indexes
CVE-2025-68251

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 December 2025

What is CVE-2025-68251?

This vulnerability in the Linux kernel can lead to an infinite loop when processing corrupted subpage compact indexes with specific crafted images. An improperly calculated clusterofs can exceed lclustersize, compromising the integrity of the system and potentially causing denial of service. The fix ensures a comprehensive check in the loading process of compact indexes to prevent this loop from occurring, enhancing system stability and security.

Affected Version(s)

Linux 8d2517aaeea3ab8651bb517bca8f3c8664d318ea < 8675447a8794983f2b7e694b378112772c17635e

Linux 8d2517aaeea3ab8651bb517bca8f3c8664d318ea

Linux 3f691aa676f29586e83e6c032713554a290418c3

References

https://git.kernel.org/stable/c/8675447a8794983f2b7e694b3...

https://git.kernel.org/stable/c/e13d315ae077bb7c3c6027cc2...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 16, 2025
Vulnerability Reserved
Dec 16, 2025

JSON