CVE-2025-38697
jfs: upper bound check of tree index in dbAllocAG
In the Linux kernel, the following vulnerability has been resolved:
jfs: upper bound check of tree index in dbAllocAG
When computing the tree index in dbAllocAG, we never check if we are
out of bounds realative to the size of the stree.
This could happen in a scenario where the filesystem metadata are
corrupted.
Produtos afetados
Linux · LinuxQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://cert-portal.siemens.com/productcert/html/ssa-032379.htmlhttps://git.kernel.org/stable/c/1467a75819e41341cd5ebd16faa2af1ca3c8f4fehttps://git.kernel.org/stable/c/173cfd741ad7073640bfb7e2344c2a0ee005e769https://git.kernel.org/stable/c/2dd05f09cc323018136a7ecdb3d1007be9ede27fhttps://git.kernel.org/stable/c/30e19a884c0b11f33821aacda7e72e914bec26efhttps://git.kernel.org/stable/c/49ea46d9025aa1914b24ea957636cbe4367a7311https://git.kernel.org/stable/c/5bdb9553fb134fd52ec208a8b378120670f6e784https://git.kernel.org/stable/c/a4f199203f79ca9cd7355799ccb26800174ff093https://git.kernel.org/stable/c/c214006856ff52a8ff17ed8da52d50601d54f9cehttps://git.kernel.org/stable/c/c8ca21a2836993d7cb816668458e05e598574e55https://lists.debian.org/debian-lts-announce/2025/10/msg00007.htmlhttps://lists.debian.org/debian-lts-announce/2025/10/msg00008.html