CVE-2025-71239 — Protection Mechanism Failure in Linux

CWE-693 — Protection Mechanism Failure9 documents8 sources

Severity

5.1MEDIUM

No vector

EPSS

0.0%

top 90.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel

Timeline

PublishedMar 17

Description

In the Linux kernel, the following vulnerability has been resolved: audit: add fchmodat2() to change attributes class fchmodat2(), introduced in version 6.6 is currently not in the change attribute class of audit. Calling fchmodat2() to change a file attribute in the same fashion than chmod() or fchmodat() will bypass audit rules such as: -w /tmp/test -p rwa -k test_rwa The current patch adds fchmodat2() to the change attributes class.

Affected Packages3 packages

▶Linuxlinux/linux_kernel6.6.0 — 6.6.128+3

▶Debianlinux/linux_kernel< 6.19.6-1

▶CVEListV5linux/linux09da082b07bbae1c11d9560c8502800039aebcea — 91e27bc79c3bca93c06bf5a471d47df9a35b3741+5

🔴Vulnerability Details

OSV

audit: add fchmodat2() to change attributes class↗2026-03-17

▶

GHSA

GHSA-h5q3-ggp6-vf4c: In the Linux kernel, the following vulnerability has been resolved: audit: add fchmodat2() to change attributes class fchmodat2(), introduced in ver↗2026-03-17

▶

CVEList

audit: add fchmodat2() to change attributes class↗2026-03-17

▶

OSV

CVE-2025-71239: In the Linux kernel, the following vulnerability has been resolved: audit: add fchmodat2() to change attributes class fchmodat2(), introduced in versi↗2026-03-17

▶

📋Vendor Advisories

Red Hat

kernel: audit: add fchmodat2() to change attributes class↗2026-03-17

▶

Microsoft

audit: add fchmodat2() to change attributes class↗2026-03-10

▶

Debian

CVE-2025-71239: linux - In the Linux kernel, the following vulnerability has been resolved: audit: add ...↗2025

▶

🕵️Threat Intelligence

Wiz

CVE-2025-71239 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶