CVE-2025-21962

Description

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing closetimeo mount option User-provided mount parameter closetimeo of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffies which can lead to an integer overflow. Found by Linux Verification Center (linuxtesting.org) with SVACE.

Reserved 2024-12-29 | Published 2025-04-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

1d9cad9c5873097ea141ffc5da1e7921ce765aa8 before 513f6cf2e906a504b7ab0b62b2eea993a6f64558
affected

5efdd9122eff772eae2feae9f0fc0ec02d4846a3 before 9968fcf02cf6b0f78fbacf3f63e782162603855a
affected

5efdd9122eff772eae2feae9f0fc0ec02d4846a3 before 6c13fcb7cf59ae65940da1dfea80144e42921e53
affected

5efdd9122eff772eae2feae9f0fc0ec02d4846a3 before 1c46673be93dd2954f44fe370fb4f2b8e6214224
affected

5efdd9122eff772eae2feae9f0fc0ec02d4846a3 before b24edd5c191c2689c59d0509f0903f9487eb6317
affected

5efdd9122eff772eae2feae9f0fc0ec02d4846a3 before d5a30fddfe2f2e540f6c43b59cf701809995faef
affected

Default status
affected

6.0
affected

Any version before 6.0
unaffected

5.15.180
unaffected

6.1.132
unaffected

6.6.84
unaffected

6.12.20
unaffected

6.13.8
unaffected

6.14
unaffected

References

git.kernel.org/...c/513f6cf2e906a504b7ab0b62b2eea993a6f64558

git.kernel.org/...c/9968fcf02cf6b0f78fbacf3f63e782162603855a

git.kernel.org/...c/6c13fcb7cf59ae65940da1dfea80144e42921e53

git.kernel.org/...c/1c46673be93dd2954f44fe370fb4f2b8e6214224

git.kernel.org/...c/b24edd5c191c2689c59d0509f0903f9487eb6317

git.kernel.org/...c/d5a30fddfe2f2e540f6c43b59cf701809995faef

cve.org (CVE-2025-21962)

nvd.nist.gov (CVE-2025-21962)

Download JSON