CVE-2025-21736

Updated: 2025-11-10 02:44:36.84879

Description:

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix possible int overflows in nilfs_fiemap() Since nilfs_bmap_lookup_contig() in nilfs_fiemap() calculates its result by being prepared to go through potentially maxblocks == INT_MAX blocks, the value in n may experience an overflow caused by left shift of blkbits. While it is extremely unlikely to occur, play it safe and cast right hand expression to wider type to mitigate the issue. Found by Linux Verification Center (linuxtesting.org) with static analysis tool SVACE.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0.0
CVSS Version 3.x MEDIUM 5.5

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement
AlmaLinux 9.2 ESU kernel 5.14.0 5.5 MEDIUM Ignored 2025-03-10 22:53:36 Exposure exists only on hosts that actively mount and use the NILFS2 filesystem; otherwise the nilfs...
CentOS 7 ELS kernel 3.10.0 5.5 MEDIUM Ignored 2025-03-10 22:53:33 Ignored due to low severity
CentOS 8.4 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2025-03-10 22:53:34 Ignored due to low severity
CentOS 8.5 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2025-03-10 22:53:35 Ignored due to low severity
CentOS Stream 8 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2025-03-10 22:53:33 Ignored due to low severity
CloudLinux 7 ELS kernel 3.10.0 5.5 MEDIUM Ignored 2025-03-10 22:53:32 Ignored due to low severity
Oracle Linux 7 ELS kernel 3.10.0 5.5 MEDIUM Ignored 2025-03-10 22:53:32 Ignored due to low severity
Oracle Linux 7 ELS kernel-uek 5.4.17 5.5 MEDIUM Released CLSA-2025:1746479711 2025-05-08 04:11:31 Ignored due to low severity
RHEL 7 ELS kernel 3.10.0 5.5 MEDIUM Ignored 2025-05-24 02:22:53 Ignored due to low severity
TuxCare 9.6 ESU kernel 5.14.0 5.5 MEDIUM Ignored 2025-07-05 02:18:08 This flaw is confined to the NILFS2 filesystem’s FIEMAP ioctl path; if NILFS2 volumes aren’t mou...
Total: 14