CVE-2025-38697
Published: September 5, 2025Last modified: September 5, 2025
Description
In the Linux kernel, the following vulnerability has been resolved: jfs: upper bound check of tree index in dbAllocAG When computing the tree index in dbAllocAG, we never check if we are out of bounds realative to the size of the stree. This could happen in a scenario where the filesystem metadata are corrupted.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 7.8 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | HIGH |
| Integrity impact | HIGH |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.151-r0) |
| 25 LTS | linux-lts | Fixed (6.12.44-r0) | |
| Stream | linux-lts | Fixed (6.12.43-r0) |
References
- https://git.kernel.org/stable/c/1467a75819e41341cd5ebd16faa2af1ca3c8f4fe
- https://git.kernel.org/stable/c/173cfd741ad7073640bfb7e2344c2a0ee005e769
- https://git.kernel.org/stable/c/2dd05f09cc323018136a7ecdb3d1007be9ede27f
- https://git.kernel.org/stable/c/30e19a884c0b11f33821aacda7e72e914bec26ef
- https://git.kernel.org/stable/c/49ea46d9025aa1914b24ea957636cbe4367a7311
- https://git.kernel.org/stable/c/5bdb9553fb134fd52ec208a8b378120670f6e784
- https://git.kernel.org/stable/c/a4f199203f79ca9cd7355799ccb26800174ff093
- https://git.kernel.org/stable/c/c214006856ff52a8ff17ed8da52d50601d54f9ce
- https://git.kernel.org/stable/c/c8ca21a2836993d7cb816668458e05e598574e55
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html