CVE-2025-21962

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-21962

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-21962.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-21962

Downstream

BELL-CVE-2025-21962

DEBIAN-CVE-2025-21962

DLA-4193-1

DSA-5900-1

MINI-ffcp-x4xc-fx68

OESA-2025-2268

OESA-2025-2269

OESA-2025-2270

RHSA-2025:12746

RHSA-2025:9079

SUSE-SU-2025:01707-1

SUSE-SU-2025:01919-1

SUSE-SU-2025:01951-1

SUSE-SU-2025:01964-1

SUSE-SU-2025:01967-1

UBUNTU-CVE-2025-21962

USN-7591-1

USN-7591-2

USN-7591-3

USN-7591-4

USN-7591-5

USN-7591-6

USN-7592-1

USN-7593-1

USN-7597-1

USN-7597-2

USN-7598-1

USN-7602-1

USN-7605-1

USN-7605-2

USN-7606-1

USN-7628-1

USN-7655-1

Related

Published

2025-04-01T16:15:27Z

Modified

2025-08-09T20:01:27Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

cifs: Fix integer overflow while processing closetimeo mount option

User-provided mount parameter closetimeo of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffies which can lead to an integer overflow.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

References

Affected packages