5.5

CVE-2025-22076

EPSS 0.07%
Veröffentlicht 16.04.2025 14:12:27
Zuletzt bearbeitet 31.10.2025 20:46:24
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

exfat: fix missing shutdown check

In the Linux kernel, the following vulnerability has been resolved:

exfat: fix missing shutdown check

xfstests generic/730 test failed because after deleting the device
that still had dirty data, the file could still be read without
returning an error. The reason is the missing shutdown check in
->read_iter.

I also noticed that shutdown checks were missing from ->write_iter,
->splice_read, and ->mmap. This commit adds shutdown checks to all
of them.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

NVD 3 VulnDex Vulnerability Enrichment 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 6.12 < 6.12.23

Linux ≫ Linux Kernel Version >= 6.13 < 6.13.11

Linux ≫ Linux Kernel Version >= 6.14 < 6.14.2

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.2

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/4a9595eb024b8319957c178be3cdeed613ac0795

Patch

https://git.kernel.org/stable/c/e41e33eb795cb9c1ead6ac627d8710546fac6e81

Patch

https://git.kernel.org/stable/c/539147585ca453db6e3d7a5cf3b9c9690513762d

Patch

https://git.kernel.org/stable/c/47e35366bc6fa3cf189a8305bce63992495f3efa

Patch

https://nvd.nist.gov/vuln/detail/CVE-2025-22076

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-22076

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-22076

EUVD