CVE-2025-38697
published 2025-09-04CVE-2025-38697: In the Linux kernel, the following vulnerability has been resolved: jfs: upper bound check of tree index in dbAllocAG When computing the tree index in…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
In the Linux kernel, the following vulnerability has been resolved:
jfs: upper bound check of tree index in dbAllocAG
When computing the tree index in dbAllocAG, we never check if we are
out of bounds realative to the size of the stree.
This could happen in a scenario where the filesystem metadata are
corrupted.
Affected
39 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| debian | linux-6.1 | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| linux | linux | — | — |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5bdb9553fb134fd52ec208a8b378120670f6e784 | 5bdb9553fb134fd52ec208a8b378120670f6e784 |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < a4f199203f79ca9cd7355799ccb26800174ff093 | a4f199203f79ca9cd7355799ccb26800174ff093 |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1467a75819e41341cd5ebd16faa2af1ca3c8f4fe | 1467a75819e41341cd5ebd16faa2af1ca3c8f4fe |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 49ea46d9025aa1914b24ea957636cbe4367a7311 | 49ea46d9025aa1914b24ea957636cbe4367a7311 |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 173cfd741ad7073640bfb7e2344c2a0ee005e769 | 173cfd741ad7073640bfb7e2344c2a0ee005e769 |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < c8ca21a2836993d7cb816668458e05e598574e55 | c8ca21a2836993d7cb816668458e05e598574e55 |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 2dd05f09cc323018136a7ecdb3d1007be9ede27f | 2dd05f09cc323018136a7ecdb3d1007be9ede27f |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 30e19a884c0b11f33821aacda7e72e914bec26ef | 30e19a884c0b11f33821aacda7e72e914bec26ef |
| linux | linux | >= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < c214006856ff52a8ff17ed8da52d50601d54f9ce | c214006856ff52a8ff17ed8da52d50601d54f9ce |
| linux | linux_kernel | — | — |
| linux | linux_kernel | >= 0 < 5.10.244-1 | 5.10.244-1 |
| linux | linux_kernel | >= 0 < 6.1.153-1 | 6.1.153-1 |
| linux | linux_kernel | >= 0 < 6.12.43-1 | 6.12.43-1 |
| linux | linux_kernel | >= 0 < 6.16.3-1 | 6.16.3-1 |
| linux | linux_kernel | >= 0 < 5.15.0-163.173 | 5.15.0-163.173 |
| linux | linux_kernel | >= 0 < 6.8.0-100.100 | 6.8.0-100.100 |
| linux | linux_kernel | >= 2.6.12.1 < 5.4.297 | 5.4.297 |
| linux | linux_kernel | >= 5.11 < 5.15.190 | 5.15.190 |
| linux | linux_kernel | >= 5.16 < 6.1.149 | 6.1.149 |
| linux | linux_kernel | >= 5.5 < 5.10.241 | 5.10.241 |
| linux | linux_kernel | >= 6.13 < 6.15.11 | 6.15.11 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH