CVE-2025-68239
Published: Dec 16, 2025
Modified: Jun 1, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: binfmt_misc: restore write access before closing files opened by open_exec() bm_register_write() opens an executable file using open_exec(), which internally calls do_open_execat() and denies write access on the file to avoid modification while it is being executed. However, when an error occurs, bm_register_write() closes the file using filp_close() directly. This does not restore the write permission, which may cause subsequent write operations on the same file to fail. Fix this by calling exe_file_allow_write_access() before filp_close() to restore the write permission properly.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected e7850f4d844e0acfac7e570af611d89deade3146 - < 54274ff90488b6c0f595a6518faed3cf0bc966ebaffected e7850f4d844e0acfac7e570af611d89deade3146 - < 480ac88431703f2adbb8e6b5bd73c3f3cf9f3d7faffected e7850f4d844e0acfac7e570af611d89deade3146 - < fbab8c08e1a6dbaef81e22d672a7647553101d16affected e7850f4d844e0acfac7e570af611d89deade3146 - < 6cce7bc7fac8471c832696720d9c8f2a976d9c54affected e7850f4d844e0acfac7e570af611d89deade3146 - < e785f552ab04dbca01d31f0334f4561240b04459+13 more versions |
Linux | Linux | affected 5.12unaffected 0 - < 5.12unaffected 5.15.209 - <= 5.15.*unaffected 6.1.167 - <= 6.1.*unaffected 6.6.130 - <= 6.6.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now