CVE-2025-21665

MEDIUM

Linux kernel - Info Disclosure

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: filemap: avoid truncating 64-bit offset to 32 bits On 32-bit kernels, folio_seek_hole_data() was inadvertently truncating a 64-bit value to 32 bits, leading to a possible infinite loop when writing to an xfs filesystem.

References (6)

[Mailing List] https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html

[Patch] https://git.kernel.org/stable/c/09528bb1a4123e2a234eac2bc45a0e51e78dab43

[Patch] https://git.kernel.org/stable/c/280f1fb89afc01e7376f59ae611d54ca69e9f967

[Patch] https://git.kernel.org/stable/c/64e5fd96330df2ad278d1c4edcca581f26e5f76e

[Patch] https://git.kernel.org/stable/c/80fc836f3ebe2f2d2d2c80c698b7667974285a04

[Patch] https://git.kernel.org/stable/c/f505e6c91e7a22d10316665a86d79f84d9f0ba76

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 1.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-835

Status published

Products (6)

linux/Kernel 5.12.0 - 5.15.177linux

linux/Kernel 5.16.0 - 6.1.127linux

linux/Kernel 6.2.0 - 6.6.74linux

linux/Kernel 6.7.0 - 6.12.11linux

linux/linux_kernel 6.13 rc1 (7 CPE variants)

linux/linux_kernel 5.12 - 5.15.177

Published Jan 31, 2025

Tracked Since Feb 18, 2026