CVE-2025-68251
erofs: avoid infinite loops due to corrupted subpage compact indexes
References
Notes
carnil> Introduced in 8d2517aaeea3 ("erofs: fix up compacted indexes for block size <
carnil> 4096")
carnil> 1a5223c182fd ("erofs: do sanity check on m->type in
carnil> z_erofs_load_compact_lcluster()"). Vulnerable versions: 6.6.16 6.7.4 6.8.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.18-rc3) [e13d315ae077bb7c3c6027cc292401bc0f4ec683]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
released (6.17.6) [8675447a8794983f2b7e694b378112772c17635e]
|
| 6.12-upstream-stable |
needed
|
| 6.6-upstream-stable |
needed
|
| 6.1-upstream-stable |
N/A "Vulnerable code not present"
|
| 5.10-upstream-stable |
N/A "Vulnerable code not present"
|
| sid |
released (6.17.6-1)
|
| 6.12-trixie-security |
needed
|
| 6.1-bookworm-security |
N/A "Vulnerable code not present"
|
| 5.10-bullseye-security |
N/A "Vulnerable code not present"
|
