CNNVD-202512-4449 Information

CNNVD ID

CNNVD-202512-4449

Related CVE

CVE-2023-54125

• CNNVD Published: 2025-12-24

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于ntfs_read_ea未对不一致的扩展属性返回错误，可能导致释放后重用。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. There is a security loophole in Linux Kernel, which stems from the fact that ntfs read ea did not return an error with inconsistent extension properties, which could lead to reuse after release.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-12-24

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/1474098b590a426d90f27bb992f17c326e0b60c1 https://git.kernel.org/stable/c/c9db0ff04649aa0b45f497183c957fe260f229f6 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-26-12-2025-49196

Patch

https://www.kernel.org/