CVE-2025-38712
Published: Sep 4, 2025
Modified: May 12, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: hfsplus: don't use BUG_ON() in hfsplus_create_attributes_file() When the volume header contains erroneous values that do not reflect the actual state of the filesystem, hfsplus_fill_super() assumes that the attributes file is not yet created, which later results in hitting BUG_ON() when hfsplus_create_attributes_file() is called. Replace this BUG_ON() with -EIO error with a message to suggest running fsck tool.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 95e0d7dbb9b28ab0dfad7c7316066b05e1f1d4cd - < bb0eea8e375677f586ad11c12e2525ed3fc698c2affected 95e0d7dbb9b28ab0dfad7c7316066b05e1f1d4cd - < 9046566fa692f88954dac8c510f37ee17a15fdb7affected 95e0d7dbb9b28ab0dfad7c7316066b05e1f1d4cd - < 03cd1db1494cf930e2fa042c9c13e32bffdb4ebaaffected 95e0d7dbb9b28ab0dfad7c7316066b05e1f1d4cd - < dee5c668ad71ddbcb4b48d95e8a4f371314ad41daffected 95e0d7dbb9b28ab0dfad7c7316066b05e1f1d4cd - < b3359392b75395a31af739a761f48f4041148226+4 more versions |
Linux | Linux | affected 3.13unaffected 0 - < 3.13unaffected 5.4.297 - <= 5.4.*unaffected 5.10.241 - <= 5.10.*unaffected 5.15.190 - <= 5.15.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now