CVE-2025-21665

MEDIUM

Linux Kernel 5.12-6.12.11 Infinite Loop via folio_seek_hole_data Offset Truncation

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: filemap: avoid truncating 64-bit offset to 32 bits On 32-bit kernels, folio_seek_hole_data() was inadvertently truncating a 64-bit value to 32 bits, leading to a possible infinite loop when writing to an xfs filesystem.

References (6)

Core 6

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html

Patch

https://git.kernel.org/stable/c/64e5fd96330df2ad278d1c4edcca581f26e5f76e

Patch

https://git.kernel.org/stable/c/80fc836f3ebe2f2d2d2c80c698b7667974285a04

Patch

https://git.kernel.org/stable/c/09528bb1a4123e2a234eac2bc45a0e51e78dab43

Patch

https://git.kernel.org/stable/c/280f1fb89afc01e7376f59ae611d54ca69e9f967

Patch

https://git.kernel.org/stable/c/f505e6c91e7a22d10316665a86d79f84d9f0ba76

Scores

CVSS v3 5.5

EPSS 0.0019

EPSS Percentile 8.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-835

Status published

Products (18)

linux/Kernel 5.12.0 - 5.15.177linux

linux/Kernel 5.16.0 - 6.1.127linux

linux/Kernel 6.2.0 - 6.6.74linux

linux/Kernel 6.7.0 - 6.12.11linux

Linux/Linux < 5.12

Linux/Linux 5.12

Linux/Linux 5.15.177 - 5.15.*

Linux/Linux 54fa39ac2e00b1b8c2a7fe72e648773ffa48f76d - 09528bb1a4123e2a234eac2bc45a0e51e78dab43

Linux/Linux 54fa39ac2e00b1b8c2a7fe72e648773ffa48f76d - 280f1fb89afc01e7376f59ae611d54ca69e9f967

Linux/Linux 54fa39ac2e00b1b8c2a7fe72e648773ffa48f76d - 64e5fd96330df2ad278d1c4edcca581f26e5f76e

... and 8 more

Published Jan 31, 2025

Tracked Since Feb 18, 2026