CVE-2025-21665

Advisory lineage Upstream: 0 Downstream: 33

Downstream

DEBIAN-CVE-2025-21665 DLA-4076-1 DSA-5860-1 SUSE-SU-2025:0564-1 SUSE-SU-2025:0847-1 SUSE-SU-2025:0856-1

Modified

Published: 31 Jan 2025, 11:25

Last modified:11 May 2026, 21:04

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (cve.org)

EPSS Score

0.01% LOW

0% probability -0.03%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

31 Jan 2025, 11:25

Published

Vulnerability first disclosed

11 May 2026, 21:04

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: filemap: avoid truncating 64-bit offset to 32 bits On 32-bit kernels, folio_seek_hole_data() was inadvertently truncating a 64-bit value to 32 bits, leading to a possible infinite loop when writing to an xfs filesystem.

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 2%

Techniques & Countermeasures

CWE-835•Loop with Unreachable Exit Condition ('Infinite Loop')
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

Affected Systems

linux•linux
≥ 54fa39ac2e00b1b8c2a7fe72e648773ffa48f76d, < 64e5fd96330df2ad278d1c4edcca581f26e5f76e | ≥ 54fa39ac2e00b1b8c2a7fe72e648773ffa48f76d, < 80fc836f3ebe2f2d2d2c80c698b7667974285a04 | ≥ 54fa39ac2e00b1b8c2a7fe72e648773ffa48f76d, < 09528bb1a4123e2a234eac2bc45a0e51e78dab43 | ≥ 54fa39ac2e00b1b8c2a7fe72e648773ffa48f76d, < 280f1fb89afc01e7376f59ae611d54ca69e9f967 | ≥ 54fa39ac2e00b1b8c2a7fe72e648773ffa48f76d, < f505e6c91e7a22d10316665a86d79f84d9f0ba76 | 5.12
linux•linux_kernel
≥ 5.12, < 5.15.177 | ≥ 5.16, < 6.1.127 | ≥ 6.2, < 6.6.74 | ≥ 6.7, < 6.12.11 | 6.13:rc1 | 6.13:rc2 | 6.13:rc3 | 6.13:rc4 | 6.13:rc5 | 6.13:rc6 | 6.13:rc7