CVE-2025-70101
Out-of-Bounds Read in lwext4 1.0.0 Library
Publication date: 2026-06-03
Last updated on: 2026-06-03
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-70101 is an out-of-bounds read vulnerability in the lwext4 1.0.0 library, specifically in the ext4_ext_binsearch_idx function within src/ext4_extent.c. The issue arises because the function does not properly validate extent header fields before performing a binary search on extent index entries. When the extent header's entries field is zero but the depth field indicates an internal node, the function uses macros that return invalid pointers. This causes the binary search to read memory beyond the allocated buffer, leading to an out-of-bounds memory read during extent tree traversal.
This invalid memory access can cause a segmentation fault or crash when processing specially crafted or corrupted ext4 filesystem images.
How can this vulnerability impact me? :
This vulnerability can be exploited by attackers supplying a specially crafted ext4 filesystem image to cause a denial of service (DoS) condition. The out-of-bounds read leads to a segmentation fault, crashing the application or system component using the lwext4 library to process the filesystem image.
Such a denial of service could disrupt services or applications relying on the lwext4 library for ext4 filesystem handling, potentially leading to system instability or downtime.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by testing the lwext4 library's handling of ext4 filesystem images, specifically by attempting to mount or process specially crafted or fuzzed ext4 images that trigger the out-of-bounds read in the ext4_ext_binsearch_idx function.
A fuzzing tool such as afl_ext4_mount_read was used to trigger the vulnerability, which causes a segmentation fault or AddressSanitizer error when processing corrupted ext4 images.
To detect the issue, you can attempt to mount suspicious or untrusted ext4 filesystem images using the vulnerable lwext4 library version 1.0.0 and monitor for crashes or segfaults.
No specific detection commands are provided in the available resources, but using fuzzing tools or monitoring logs for segmentation faults during ext4 image processing can help identify the vulnerability.
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include avoiding the use of untrusted or specially crafted ext4 filesystem images with the vulnerable lwext4 library version 1.0.0.
Since the vulnerability arises from insufficient validation in the ext4_ext_binsearch_idx function, applying patches or updates to the lwext4 library that fix this validation issue is recommended once available.
In the absence of an official patch, restricting access to systems that process ext4 images with lwext4 and monitoring for crashes can reduce the risk of denial of service.