7.1

CVE-2025-38652

EPSS 0.02%
Veröffentlicht 22.08.2025 16:00:56
Zuletzt bearbeitet 07.01.2026 17:36:25
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

f2fs: fix to avoid out-of-boundary access in devs.path

In the Linux kernel, the following vulnerability has been resolved:

f2fs: fix to avoid out-of-boundary access in devs.path

- touch /mnt/f2fs/012345678901234567890123456789012345678901234567890123
- truncate -s $((1024*1024*1024)) \
  /mnt/f2fs/012345678901234567890123456789012345678901234567890123
- touch /mnt/f2fs/file
- truncate -s $((1024*1024*1024)) /mnt/f2fs/file
- mkfs.f2fs /mnt/f2fs/012345678901234567890123456789012345678901234567890123 \
  -c /mnt/f2fs/file
- mount /mnt/f2fs/012345678901234567890123456789012345678901234567890123 \
  /mnt/f2fs/loop

[16937.192225] F2FS-fs (loop0): Mount Device [ 0]: /mnt/f2fs/012345678901234567890123456789012345678901234567890123\xff\x01,      511,        0 -    3ffff
[16937.192268] F2FS-fs (loop0): Failed to find devices

If device path length equals to MAX_PATH_LEN, sbi->devs.path[] may
not end up w/ null character due to path array is fully filled, So
accidently, fields locate after path[] may be treated as part of
device path, result in parsing wrong device path.

struct f2fs_dev_info {
...
	char path[MAX_PATH_LEN];
...
};

Let's add one byte space for sbi->devs.path[] to store null
character of device path string.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 14

NVD 9 VulnDex Vulnerability Enrichment 10

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 4.10 < 5.4.297

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.241

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.190

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.148

Linux ≫ Linux Kernel Version >= 6.2 < 6.6.102

Linux ≫ Linux Kernel Version >= 6.7 < 6.12.42

Linux ≫ Linux Kernel Version >= 6.13 < 6.15.10

Linux ≫ Linux Kernel Version >= 6.16 < 6.16.1

Debian ≫ Debian Linux Version11.0

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.062

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

https://git.kernel.org/stable/c/3466721f06edff834f99d9f49f23eabc6b2cb78e

Patch

https://git.kernel.org/stable/c/345fc8d1838f3f8be7c8ed08d86a13dedef67136

Patch

https://git.kernel.org/stable/c/70849d33130a2cf1d6010069ed200669c8651fbd

Patch

https://git.kernel.org/stable/c/755427093e4294ac111c3f9e40d53f681a0fbdaa

Patch

https://git.kernel.org/stable/c/1b1efa5f0e878745e94a98022e8edc675a87d78e

Patch

https://git.kernel.org/stable/c/5661998536af52848cc4d52a377e90368196edea

Patch

https://git.kernel.org/stable/c/1cf1ff15f262e8baf12201b270b6a79f9d119b2d

Patch

https://git.kernel.org/stable/c/666b7cf6ac9aa074b8319a2b68cba7f2c30023f0

Patch

https://git.kernel.org/stable/c/dc0172c74bd9edaee7bea2ebb35f3dbd37a8ae80

Patch

https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-38652

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38652

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38652

EUVD