Description

In the Linux kernel, the following vulnerability has been resolved: nilfs2: reject invalid file types when reading inodes To prevent inodes with invalid file types from tripping through the vfs and causing malfunctions or assertion failures, add a missing sanity check when reading an inode from a block device. If the file type is not valid, treat it as a filesystem error.

INFO

Published Date :

2025-08-22T16:02:55.856Z

Last Modified :

2025-08-28T14:44:30.852Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-38663 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Nilf
  • Nilfs
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-38663.

URL Resource
https://git.kernel.org/stable/c/1a5c204e175a78556b8ef1f7683249fa5197295a cve-icon cve-icon
https://git.kernel.org/stable/c/42cd46b3a8b1497b9258dc7ac445dbd6beb73e2f cve-icon cve-icon
https://git.kernel.org/stable/c/4aead50caf67e01020c8be1945c3201e8a972a27 cve-icon cve-icon
https://git.kernel.org/stable/c/79663a15a1c70ca84f86f2dbba07b423fe7d5d4f cve-icon cve-icon
https://git.kernel.org/stable/c/bf585ee198bba4ff25b0d80a0891df4656cb0d08 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025082259-CVE-2025-38663-b1e8@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-38663 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-38663 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact