CVE-2025-40312

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-40312

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40312.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-40312

Downstream

BELL-CVE-2025-40312

DEBIAN-CVE-2025-40312

DLA-4404-1

DLA-4436-1

ECHO-a916-783b-4638

ROOT-OS-DEBIAN-12-CVE-2025-40312

ROOT-OS-DEBIAN-13-CVE-2025-40312

ROOT-OS-UBUNTU-2204-CVE-2025-40312

ROOT-OS-UBUNTU-2404-CVE-2025-40312

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

UBUNTU-CVE-2025-40312

USN-8029-1

USN-8029-2

USN-8029-3

USN-8030-1

USN-8048-1

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8096-1

USN-8096-2

USN-8096-3

USN-8096-4

USN-8096-5

USN-8100-1

USN-8116-1

Related

Published

2025-12-08T00:46:38.147Z

Modified

2026-03-20T12:43:15.671184Z

Summary

jfs: Verify inode mode when loading from disk

Details

In the Linux kernel, the following vulnerability has been resolved:

jfs: Verify inode mode when loading from disk

The inode mode loaded from corrupted disk can be invalid. Do like what commit 0a9e74051313 ("isofs: Verify inode mode when loading from disk") does.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/40xxx/CVE-2025-40312.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Fixed

19cce65709a8a2966203653028d9004e28e85bd5

Fixed

fabc1348bb8fe6bc80850014ee94bd89945f7f4d

Fixed

46c76cfa17d1828c1a889cb54cb11d5ef3dfbc0f

Fixed

2870a7dec49ccdc3f6ae35da8f5d6737f21133a8

Fixed

ce054a366c54992185c9514e489a14f145b10c29

Fixed

1795277a4e98d82e6451544d43695540cee042ea

Fixed

8d6a9cbd276b3b85da0e7e98208f89416fed9265

Fixed

7a5aa54fba2bd591b22b9b624e6baa9037276986

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40312.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.6.12

Fixed

5.4.302

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.247

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.197

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.159

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.117

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.58

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.17.8

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-40312.json"