๐Ÿ” CVE Alert

CVE-2025-68767

UNKNOWN 0.0

hfsplus: Verify inode mode when loading from disk

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

In the Linux kernel, the following vulnerability has been resolved: hfsplus: Verify inode mode when loading from disk syzbot is reporting that S_IFMT bits of inode->i_mode can become bogus when the S_IFMT bits of the 16bits "mode" field loaded from disk are corrupted. According to [1], the permissions field was treated as reserved in Mac OS 8 and 9. According to [2], the reserved field was explicitly initialized with 0, and that field must remain 0 as long as reserved. Therefore, when the "mode" field is not 0 (i.e. no longer reserved), the file must be S_IFDIR if dir == 1, and the file must be one of S_IFREG/S_IFLNK/S_IFCHR/ S_IFBLK/S_IFIFO/S_IFSOCK if dir == 0.

Vendor linux
Product linux
Ecosystems
Industries
Technology
Published Jan 13, 2026
Last Updated May 11, 2026
Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Linux / Linux
1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 6f768724aabd5b321c5b8f15acdca11e4781cf32 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < d92333c7a35856e419500e7eed72dac1afa404a5 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 001f44982587ad462b3002ee40c75e8df67d597d 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 05ec9af3cc430683c97f76027e1c55ac6fd25c59 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < edfb2e602b5ba5ca6bf31cbac20b366efb72b156 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 91f114bffa36ce56d0e1f60a0a44fc09baaefc79 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 005d4b0d33f6b4a23d382b7930f7a96b95b01f39
Linux / Linux
2.6.12

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
git.kernel.org: https://git.kernel.org/stable/c/6f768724aabd5b321c5b8f15acdca11e4781cf32 git.kernel.org: https://git.kernel.org/stable/c/d92333c7a35856e419500e7eed72dac1afa404a5 git.kernel.org: https://git.kernel.org/stable/c/001f44982587ad462b3002ee40c75e8df67d597d git.kernel.org: https://git.kernel.org/stable/c/05ec9af3cc430683c97f76027e1c55ac6fd25c59 git.kernel.org: https://git.kernel.org/stable/c/edfb2e602b5ba5ca6bf31cbac20b366efb72b156 git.kernel.org: https://git.kernel.org/stable/c/91f114bffa36ce56d0e1f60a0a44fc09baaefc79 git.kernel.org: https://git.kernel.org/stable/c/005d4b0d33f6b4a23d382b7930f7a96b95b01f39