CVE-2025-40312

Summary

In the Linux kernel, the following vulnerability has been resolved:

jfs: Verify inode mode when loading from disk

The inode mode loaded from corrupted disk can be invalid. Do like what commit 0a9e74051313 ("isofs: Verify inode mode when loading from disk") does.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 19cce65709a8a2966203653028d9004e28e85bd5affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < fabc1348bb8fe6bc80850014ee94bd89945f7f4daffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 46c76cfa17d1828c1a889cb54cb11d5ef3dfbc0faffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 2870a7dec49ccdc3f6ae35da8f5d6737f21133a8affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < ce054a366c54992185c9514e489a14f145b10c29affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1795277a4e98d82e6451544d43695540cee042eaaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 8d6a9cbd276b3b85da0e7e98208f89416fed9265affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 7a5aa54fba2bd591b22b9b624e6baa9037276986affected
LinuxLinux2.6.12affected
LinuxLinux0 < 2.6.12unaffected
LinuxLinux5.4.302 <= 5.4.*unaffected
LinuxLinux5.10.247 <= 5.10.*unaffected
LinuxLinux5.15.197 <= 5.15.*unaffected
LinuxLinux6.1.159 <= 6.1.*unaffected
LinuxLinux6.6.117 <= 6.6.*unaffected
LinuxLinux6.12.58 <= 6.12.*unaffected
LinuxLinux6.17.8 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References