USN-7296-1

Advisory lineage Upstream: 2 Downstream: 0

Upstream

CVE-2025-0927 UBUNTU-CVE-2025-0927

Published: 25 Feb 2025, 13:20

Last modified:23 May 2026, 01:34

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

25 Feb 2025, 13:20

Published

Vulnerability first disclosed

23 May 2026, 01:34

Last Modified

Vulnerability information updated

Description

linux, linux-hwe vulnerability Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code.

Affected Systems

ubuntu•linux
< 4.15.0-234.246
ubuntu•linux-hwe
< 4.15.0-234.246~16.04.1

References (2)

https://ubuntu.com/security/notices/USN-7296-1
https://ubuntu.com/security/CVE-2025-0927