CVE-2025-22076 — Linux vulnerability
11 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 80.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 16
Latest updateJul 8
Description
In the Linux kernel, the following vulnerability has been resolved:
exfat: fix missing shutdown check
xfstests generic/730 test failed because after deleting the device
that still had dirty data, the file could still be read without
returning an error. The reason is the missing shutdown check in
->read_iter.
I also noticed that shutdown checks were missing from ->write_iter,
->splice_read, and ->mmap. This commit adds shutdown checks to all
of them.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages5 packages
▶CVEListV5linux/linuxf761fcdd289d07e8547fef7ac76c3760fc7803f2 — 4a9595eb024b8319957c178be3cdeed613ac0795+4
Patches
🔴Vulnerability Details
5OSV▶
CVE-2025-22076: In the Linux kernel, the following vulnerability has been resolved: exfat: fix missing shutdown check xfstests generic/730 test failed because after d↗2025-04-16
GHSA▶
GHSA-6c74-8p8j-4qv8: In the Linux kernel, the following vulnerability has been resolved:
exfat: fix missing shutdown check
xfstests generic/730 test failed because after↗2025-04-16
📋Vendor Advisories
5Debian▶
CVE-2025-22076: linux - In the Linux kernel, the following vulnerability has been resolved: exfat: fix ...↗2025