Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2025-21691
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-10 Feb, 2025 | 15:58
Updated At-04 May, 2025 | 07:19
Rejected At-
▼CVE Numbering Authority (CNA)
cachestat: fix page cache statistics permission checking

In the Linux kernel, the following vulnerability has been resolved: cachestat: fix page cache statistics permission checking When the 'cachestat()' system call was added in commit cf264e1329fb ("cachestat: implement cachestat syscall"), it was meant to be a much more convenient (and performant) version of mincore() that didn't need mapping things into the user virtual address space in order to work. But it ended up missing the "check for writability or ownership" fix for mincore(), done in commit 134fca9063ad ("mm/mincore.c: make mincore() more conservative"). This just adds equivalent logic to 'cachestat()', modified for the file context (rather than vma).

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • mm/filemap.c
Default Status
unaffected
Versions
Affected
  • From cf264e1329fb0307e044f7675849f9f38b44c11a before 7d6405c13b0d8a8367cd8df63f118b619a3f0dd2 (git)
  • From cf264e1329fb0307e044f7675849f9f38b44c11a before 780ab8329672464984cf1344bd5c3993af0226c7 (git)
  • From cf264e1329fb0307e044f7675849f9f38b44c11a before 97153a05077f618f7471f50a78158602badccb30 (git)
  • From cf264e1329fb0307e044f7675849f9f38b44c11a before 5f537664e705b0bf8b7e329861f20128534f6a83 (git)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • mm/filemap.c
Default Status
affected
Versions
Affected
  • 6.5
Unaffected
  • From 0 before 6.5 (semver)
  • From 6.6.75 through 6.6.* (semver)
  • From 6.12.12 through 6.12.* (semver)
  • From 6.13.1 through 6.13.* (semver)
  • From 6.14 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/7d6405c13b0d8a8367cd8df63f118b619a3f0dd2
N/A
https://git.kernel.org/stable/c/780ab8329672464984cf1344bd5c3993af0226c7
N/A
https://git.kernel.org/stable/c/97153a05077f618f7471f50a78158602badccb30
N/A
https://git.kernel.org/stable/c/5f537664e705b0bf8b7e329861f20128534f6a83
N/A
Hyperlink: https://git.kernel.org/stable/c/7d6405c13b0d8a8367cd8df63f118b619a3f0dd2
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/780ab8329672464984cf1344bd5c3993af0226c7
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/97153a05077f618f7471f50a78158602badccb30
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/5f537664e705b0bf8b7e329861f20128534f6a83
Resource: N/A
Details not found