CVE-2025-68251
BaseFortify
Publication date: 2025-12-16
Last updated on: 2025-12-18
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel's erofs filesystem involves infinite loops caused by corrupted subpage compact indexes. Specifically, the issue arises because the 'clusterofs' value can be larger than 'lclustersize' for certain corrupted subpage compact indexes, leading to an infinite loop when processing crafted images. The fix involves moving checks to ensure proper handling of these indexes and correcting the position of type checks during cluster loading.
How can this vulnerability impact me? :
The vulnerability can cause the Linux kernel to enter an infinite loop when processing specially crafted erofs images with corrupted subpage compact indexes. This could lead to system hangs or denial of service conditions, impacting system stability and availability.