5.5

CVE-2025-38498

EPSS 0.03%
Veröffentlicht 30.07.2025 06:15:27
Zuletzt bearbeitet 12.05.2026 13:16:51
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

do_change_type(): refuse to operate on unmounted/not ours mounts

In the Linux kernel, the following vulnerability has been resolved:

do_change_type(): refuse to operate on unmounted/not ours mounts

Ensure that propagation settings can only be changed for mounts located
in the caller's mount namespace. This change aligns permission checking
with the rest of mount(2).

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 15

NVD 8 VulnDex Vulnerability Enrichment 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 2.6.15 < 5.4.295

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.239

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.186

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.142

Linux ≫ Linux Kernel Version >= 6.2 < 6.6.94

Linux ≫ Linux Kernel Version >= 6.7 < 6.12.34

Linux ≫ Linux Kernel Version >= 6.13 < 6.15.3

Debian ≫ Debian Linux Version11.0

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.097

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/064014f7812744451d5d0592f3d2bcd727f2ee93

Patch

https://git.kernel.org/stable/c/12f147ddd6de7382dad54812e65f3f08d05809fc

Patch

https://git.kernel.org/stable/c/19554c79a2095ddde850906a067915c1ef3a4114

Patch

https://git.kernel.org/stable/c/432a171d60056489270c462e651e6c3a13f855b1

Patch

https://git.kernel.org/stable/c/4f091ad0862b02dc42a19a120b7048de848561f8

Patch

https://git.kernel.org/stable/c/787937c4e373f1722c4343e5a5a4eb0f8543e589

Patch

https://git.kernel.org/stable/c/9c1ddfeb662b668fff69c5f1cfdd9f5d23d55d23

Patch

https://git.kernel.org/stable/c/c7d11fdf8e5db5f34a6c062c7e6ba3a0971879d2

Patch

https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

Third Party Advisory

https://cert-portal.siemens.com/productcert/html/ssa-082556.html

https://cert-portal.siemens.com/productcert/html/ssa-089022.html

https://nvd.nist.gov/vuln/detail/CVE-2025-38498

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38498

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38498

EUVD