Description

On 64-bit systems, the implementation of VOP_VPTOFH() in the cd9660, tarfs and ext2fs filesystems overflows the destination FID buffer by 4 bytes, a stack buffer overflow. A NFS server that exports a cd9660, tarfs, or ext2fs file system can be made to panic by mounting and accessing the export with an NFS client. Further exploitation (e.g., bypassing file permission checking or remote kernel code execution) is potentially possible, though this has not been demonstrated. In particular, release kernels are compiled with stack protection enabled, and some instances of the overflow are caught by this mechanism, causing a panic.

INFO

Published Date :

2025-01-30T04:48:03.054Z

Last Modified :

2025-02-07T17:02:45.863Z

Source :

freebsd
AFFECTED PRODUCTS

The following products are affected by CVE-2025-0373 vulnerability.

Vendors Products
Freebsd
  • Freebsd
Netapp
  • Ontap
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-0373.

URL Resource
https://security.freebsd.org/advisories/FreeBSD-SA-25:02.fs.asc cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20250207-0009/ cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact