CVE-2025-71266Infinite Loop in Linux

9 documents8 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 90.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
LinuxLinux Kernel
Timeline
PublishedMar 18

Description

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: check return value of indx_find to avoid infinite loop We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service (DoS) condition. A malformed dentry in the ntfs3 filesystem can cause the kernel to hang during the lookup operations. By setting the HAS_SUB_NODE flag in an INDEX_ENTRY within a directory's INDEX_ALLOCATION block and manipulating the VCN pointer, an attacker can cause t

Affected Packages3 packages

Linuxlinux/linux_kernel5.15.05.15.202+5
Debianlinux/linux_kernel< 6.19.6-1
CVEListV5linux/linux82cae269cfa953032fbb8980a7d554d60fb00b1714c3188afbedfd5178bbabb8002487ea14b37b56+7

🔴Vulnerability Details

4
OSV
fs: ntfs3: check return value of indx_find to avoid infinite loop2026-03-18
OSV
CVE-2025-71266: In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: check return value of indx_find to avoid infinite loop We found an infi2026-03-18
GHSA
GHSA-f43g-cfgj-442p: In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: check return value of indx_find to avoid infinite loop We found an in2026-03-18
CVEList
fs: ntfs3: check return value of indx_find to avoid infinite loop2026-03-18

📋Vendor Advisories

3
Red Hat
kernel: fs: ntfs3: check return value of indx_find to avoid infinite loop2026-03-18
Microsoft
fs: ntfs3: check return value of indx_find to avoid infinite loop2026-03-10
Debian
CVE-2025-71266: linux - In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: ...2025

🕵️Threat Intelligence

1
Wiz
CVE-2025-71266 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2025-71266 — Infinite Loop in Linux | cvebase