Vulnerability Lookup

🛡️ CVE-2025-38692

🟡 CVSS 5.5 — Medium ✅ No Known Exploit CWE-835 NVD

5.5

CVSS Score

0 Low4 Medium7 High9 Critical10

Description

In the Linux kernel, the following vulnerability has been resolved: exfat: add cluster chain loop check for dir An infinite loop may occur if the following conditions occur due to file system corruption. (1) Condition for exfat_count_dir_entries() to loop infinitely. - The cluster chain includes a loop. - There is no UNUSED entry in the cluster chain. (2) Condition for exfat_create_upcase_table() to loop infinitely. - The cluster chain of the root directory includes a loop. - There are no UNUSED entry and up-case table entry in the cluster chain of the root directory. (3) Condition for exfat_load_bitmap() to loop infinitely. - The cluster chain of the root directory includes a loop. - There are no UNUSED entry and bitmap entry in the cluster chain of the root directory. (4) Condition for exfat_find_dir_entry() to loop infinitely. - The cluster chain includes a loop. - The unused directory entries were exhausted by some operation. (5) Condition for exfat_check_dir_empty() to loop infinitely. - The cluster chain includes a loop. - The unused directory entries were exhausted by some operation. - All files and sub-directories under the directory are deleted. This commit adds checks to break the above infinite loop.

Details

Severity MEDIUM

CVSS Score 5.5

CVSS Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE CWE-835

Public Exploit ✅ No

Source NVD

Published 2025-09-04

Updated 2026-06-02

Modified 2025-11-24

Fix URL https://git.kernel.org/stable/c/4c3cda20c4cf1871e27868d08fda06b79bc7d568

Affected Packages

Software	From version	Fixed in
linux-kernel	6.16	6.16.2

References

Patch https://git.kernel.org/stable/c/4c3cda20c4cf1871e27868d08fda06b79bc7d568

Patch https://git.kernel.org/stable/c/868f23286c1a13162330fa6c614fe350f78e3f82

Patch https://git.kernel.org/stable/c/99f9a97dce39ad413c39b92c90393bbd6778f3fd

Patch https://git.kernel.org/stable/c/aa8fe7b7b73d4c9a41bb96cb3fb3092f794ecb33

Patch https://git.kernel.org/stable/c/e2066ca3ef49a30920d8536fa366b2a183a808ee

🔗 NVD 🔗 Mitre ✅ Fix / Advisory

Similar Threats

Vulnerability Monitoring

Stay informed about vulnerabilities in your stack

BotEraser monitors your WordPress installation and notifies you when software you use appears in our vulnerability database.

Set Up Free Alerts →

No credit card required · Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.

Stay informed about vulnerabilities in your stack

Company

Resources

Services

Trusted

Subscribe