NVD

CVE-2025-21699 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag Truncate an inode's address space when flipping the GFS2_DIF_JDATA flag: depending on that flag, the pages in the address space will either use buffer heads or iomap_folio_state structs, and we cannot mix the two.

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: 5.5 MEDIUM

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: N/A

NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink	Resource
https://git.kernel.org/stable/c/2a40a140e11fec699e128170ccaa98b6b82cb503	Patch
https://git.kernel.org/stable/c/2b0bd5051ad1c1e9ef4879f18e15a7712c974f3e	Patch
https://git.kernel.org/stable/c/4516febe325342555bb09ca5b396fb816d655821	Patch
https://git.kernel.org/stable/c/4dd57d1f0e9844311c635a7fb39abce4f2ac5a61	Patch
https://git.kernel.org/stable/c/4e3ded34f3f3c9d7ed2aac7be8cf51153646574a	Patch
https://git.kernel.org/stable/c/5bb1fd0855bb0abc7d97e44758d6ffed7882d2d0	Patch
https://git.kernel.org/stable/c/7c9d9223802fbed4dee1ae301661bf346964c9d2	Patch
https://git.kernel.org/stable/c/8c41abc11aa8438c9ed2d973f97e66674c0355df	Patch

Weakness Enumeration

CWE-ID	CWE Name	Source
NVD-CWE-noinfo	Insufficient Information	NIST

Known Affected Software Configurations Switch to CPE 2.2

Configuration 1 ( hide )

cpe:2.3:o:linux:linux_kernel:::::::: Show Matching CPE(s)	Up to (excluding) 5.4.290
cpe:2.3:o:linux:linux_kernel:::::::: Show Matching CPE(s)	From (including) 5.5	Up to (excluding) 5.10.234
cpe:2.3:o:linux:linux_kernel:::::::: Show Matching CPE(s)	From (including) 5.11	Up to (excluding) 5.15.178
cpe:2.3:o:linux:linux_kernel:::::::: Show Matching CPE(s)	From (including) 5.16	Up to (excluding) 6.1.128
cpe:2.3:o:linux:linux_kernel:::::::: Show Matching CPE(s)	From (including) 6.2	Up to (excluding) 6.6.75
cpe:2.3:o:linux:linux_kernel:::::::: Show Matching CPE(s)	From (including) 6.7	Up to (excluding) 6.12.12
cpe:2.3:o:linux:linux_kernel:6.13:-:::::: Show Matching CPE(s)
cpe:2.3:o:linux:linux_kernel:6.13:rc1:::::: Show Matching CPE(s)
cpe:2.3:o:linux:linux_kernel:6.13:rc2:::::: Show Matching CPE(s)
cpe:2.3:o:linux:linux_kernel:6.13:rc3:::::: Show Matching CPE(s)
cpe:2.3:o:linux:linux_kernel:6.13:rc4:::::: Show Matching CPE(s)
cpe:2.3:o:linux:linux_kernel:6.13:rc5:::::: Show Matching CPE(s)
cpe:2.3:o:linux:linux_kernel:6.13:rc6:::::: Show Matching CPE(s)
cpe:2.3:o:linux:linux_kernel:6.13:rc7:::::: Show Matching CPE(s)

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

2 change records found show changes

Initial Analysis by NIST 2/14/2025 9:06:47 AM

Action	Type	Old Value	New Value
Added	CVSS V3.1		NIST AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Added	CWE		NIST NVD-CWE-noinfo
Added	CPE Configuration		Record truncated, showing 500 of 1072 characters. View Entire Change Record OR cpe:2.3:o:linux:linux_kernel::::::::* versions up to (excluding) 5.4.290 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.5 up to (excluding) 5.10.234 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.11 up to (excluding) 5.15.178 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.16 up to (excluding) 6.1.128 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 6.2 up to
Changed	Reference Type	https://git.kernel.org/stable/c/2a40a140e11fec699e128170ccaa98b6b82cb503 No Types Assigned	https://git.kernel.org/stable/c/2a40a140e11fec699e128170ccaa98b6b82cb503 Patch
Changed	Reference Type	https://git.kernel.org/stable/c/2b0bd5051ad1c1e9ef4879f18e15a7712c974f3e No Types Assigned	https://git.kernel.org/stable/c/2b0bd5051ad1c1e9ef4879f18e15a7712c974f3e Patch
Changed	Reference Type	https://git.kernel.org/stable/c/4516febe325342555bb09ca5b396fb816d655821 No Types Assigned	https://git.kernel.org/stable/c/4516febe325342555bb09ca5b396fb816d655821 Patch
Changed	Reference Type	https://git.kernel.org/stable/c/4dd57d1f0e9844311c635a7fb39abce4f2ac5a61 No Types Assigned	https://git.kernel.org/stable/c/4dd57d1f0e9844311c635a7fb39abce4f2ac5a61 Patch
Changed	Reference Type	https://git.kernel.org/stable/c/4e3ded34f3f3c9d7ed2aac7be8cf51153646574a No Types Assigned	https://git.kernel.org/stable/c/4e3ded34f3f3c9d7ed2aac7be8cf51153646574a Patch
Changed	Reference Type	https://git.kernel.org/stable/c/5bb1fd0855bb0abc7d97e44758d6ffed7882d2d0 No Types Assigned	https://git.kernel.org/stable/c/5bb1fd0855bb0abc7d97e44758d6ffed7882d2d0 Patch
Changed	Reference Type	https://git.kernel.org/stable/c/7c9d9223802fbed4dee1ae301661bf346964c9d2 No Types Assigned	https://git.kernel.org/stable/c/7c9d9223802fbed4dee1ae301661bf346964c9d2 Patch
Changed	Reference Type	https://git.kernel.org/stable/c/8c41abc11aa8438c9ed2d973f97e66674c0355df No Types Assigned	https://git.kernel.org/stable/c/8c41abc11aa8438c9ed2d973f97e66674c0355df Patch

New CVE Received from kernel.org 2/12/2025 9:15:33 AM

Action	Type	New Value
Added	Description	In the Linux kernel, the following vulnerability has been resolved: gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag Truncate an inode's address space when flipping the GFS2_DIF_JDATA flag: depending on that flag, the pages in the address space will either use buffer heads or iomap_folio_state structs, and we cannot mix the two.
Added	Reference	https://git.kernel.org/stable/c/2a40a140e11fec699e128170ccaa98b6b82cb503
Added	Reference	https://git.kernel.org/stable/c/2b0bd5051ad1c1e9ef4879f18e15a7712c974f3e
Added	Reference	https://git.kernel.org/stable/c/4516febe325342555bb09ca5b396fb816d655821
Added	Reference	https://git.kernel.org/stable/c/4dd57d1f0e9844311c635a7fb39abce4f2ac5a61
Added	Reference	https://git.kernel.org/stable/c/4e3ded34f3f3c9d7ed2aac7be8cf51153646574a
Added	Reference	https://git.kernel.org/stable/c/5bb1fd0855bb0abc7d97e44758d6ffed7882d2d0
Added	Reference	https://git.kernel.org/stable/c/7c9d9223802fbed4dee1ae301661bf346964c9d2
Added	Reference	https://git.kernel.org/stable/c/8c41abc11aa8438c9ed2d973f97e66674c0355df

Quick Info

CVE Dictionary Entry:
CVE-2025-21699
NVD Published Date:
02/12/2025
NVD Last Modified:
02/14/2025
Source:
kernel.org

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2025-21699 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

Initial Analysis by NIST 2/14/2025 9:06:47 AM

New CVE Received from kernel.org 2/12/2025 9:15:33 AM

Quick Info