Bug 2414732 (CVE-2025-40190)
| Summary: | CVE-2025-40190 kernel: ext4: guard against EA inode refcount underflow in xattr update | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security DevOps Team <prodsec-dev> |
| Status: | NEW --- | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | Keywords: | Security |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | --- | |
| Doc Text: |
A flaw was found in the ext4 filesystem implementation in the Linux kernel. The function ext4_xattr_inode_update_ref() may read an EA-inode reference count that is already non-positive and then apply a negative change (-1), causing the reference count to underflow and the filesystem to treat the inode as corrupted. This may lead to unexpected filesystem errors or denial of service (e.g., the filesystem remounting read-only).
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
OSIDB Bzimport
2025-11-12 23:03:19 UTC
|