CVE-2025-68767
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-13

Last updated on: 2026-01-19

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: hfsplus: Verify inode mode when loading from disk syzbot is reporting that S_IFMT bits of inode->i_mode can become bogus when the S_IFMT bits of the 16bits "mode" field loaded from disk are corrupted. According to [1], the permissions field was treated as reserved in Mac OS 8 and 9. According to [2], the reserved field was explicitly initialized with 0, and that field must remain 0 as long as reserved. Therefore, when the "mode" field is not 0 (i.e. no longer reserved), the file must be S_IFDIR if dir == 1, and the file must be one of S_IFREG/S_IFLNK/S_IFCHR/ S_IFBLK/S_IFIFO/S_IFSOCK if dir == 0.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-13
Last Modified
2026-01-19
Generated
2026-06-16
AI Q&A
2026-01-14
EPSS Evaluated
2026-06-15
NVD
CVE-2025-68767
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability involves the Linux kernel's handling of the HFS+ filesystem. Specifically, the S_IFMT bits of the inode's i_mode field can become corrupted when loading from disk, leading to bogus mode bits. This happens because the permissions field, which was reserved and initialized to zero in older Mac OS versions, can become non-zero and cause incorrect file type interpretation. The fix ensures that when the mode field is not zero, the file type must be consistent with whether it is a directory or not, preventing corrupted or invalid inode modes.

Impact Analysis

This vulnerability can lead to incorrect interpretation of file types in the HFS+ filesystem on Linux, potentially causing the system to misidentify files or directories. This could result in improper file handling, security issues, or system instability due to corrupted inode mode bits.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-68767. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart