CVE-2025-40287
- Source
- https://cve.org/CVERecord?id=CVE-2025-40287
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40287.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-40287
- Downstream
- Related
- Published
- 2025-12-06T21:51:13.328Z
- Modified
- 2026-03-12T03:54:38.382551Z
- Summary
- exfat: fix improper check of dentry.stream.valid_size
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
exfat: fix improper check of dentry.stream.valid_size
We found an infinite loop bug in the exFAT file system that can lead to a Denial-of-Service (DoS) condition. When a dentry in an exFAT filesystem is malformed, the following system calls — SYSopenat, SYSftruncate, and SYS_pwrite64 — can cause the kernel to hang.
Root cause analysis shows that the size validation code in exfatfind() does not check whether dentry.stream.validsize is negative. As a result, the system calls mentioned above can succeed and eventually trigger the DoS issue.
This patch adds a check for negative dentry.stream.valid_size to prevent this vulnerability.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40287.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/204b1b02ee018ba52ad2ece21fe3a8643d66a1b2
- https://git.kernel.org/stable/c/6c627bcc1896ba62ec793d0c00da74f3c93ce3ad
- https://git.kernel.org/stable/c/82ebecdc74ff555daf70b811d854b1f32a296bea
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40287.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-40287