CVE-2025-38498
MEDIUMLinux Kernel - Unauthenticated Mount Namespace Propagation Setting Bypass
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: do_change_type(): refuse to operate on unmounted/not ours mounts Ensure that propagation settings can only be changed for mounts located in the caller's mount namespace. This change aligns permission checking with the rest of mount(2).
References (12)
Core 12
Core References
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-082556.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-089022.html
Scores
CVSS v3
5.5
EPSS
0.0003
EPSS Percentile
9.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (27)
debian/debian_linux
11.0
linux/Kernel
2.6.15 - 5.4.295linux
linux/Kernel
5.11.0 - 5.15.186linux
linux/Kernel
5.16.0 - 6.1.142linux
linux/Kernel
5.5.0 - 5.10.239linux
linux/Kernel
6.13.0 - 6.15.3linux
linux/Kernel
6.2.0 - 6.6.94linux
linux/Kernel
6.7.0 - 6.12.34linux
Linux/Linux
< 2.6.15
Linux/Linux
07b20889e3052c7e77d6a6a54e7e83446eb1ba84 - 064014f7812744451d5d0592f3d2bcd727f2ee93
... and 17 more
Published
Jul 30, 2025
Tracked Since
Feb 18, 2026