CVE-2025-40200

NONE EPSS 6.8%
Published Nov 12, 20257mo ago · Modified Jun 17, 20262w ago
Find Similar
Published Nov 12, 2025 7mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: Squashfs: reject negative file sizes in squashfs_read_inode() Syskaller reports a "WARNING in ovl_copy_up_file" in overlayfs. This warning is ultimately caused because the underlying Squashfs file system returns a file with a negative file size. This commit checks for a negative file size and returns EINVAL. [phillip@squashfs.org.uk: only need to check 64 bit quantity]

Threat Intelligence

EPSS Exploit Probability
6.8% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 8

  • git.kernel.org https://git.kernel.org/stable/c/2871c74caa3f4f05b429e6bfefebac62dbf1b408
  • git.kernel.org https://git.kernel.org/stable/c/54170057a5fadd24a37b70de41e61d39284d9bd7
  • git.kernel.org https://git.kernel.org/stable/c/8118f66124895829443d09c207e654adcb2f9321
  • git.kernel.org https://git.kernel.org/stable/c/875fb3f87ae0225b881319ba016a1a8c4ffd5812
  • git.kernel.org https://git.kernel.org/stable/c/8c7aad76751816207fee556d44aa88a710824810
  • git.kernel.org https://git.kernel.org/stable/c/9f1c14c1de1bdde395f6cc893efa4f80a2ae3b2b
  • git.kernel.org https://git.kernel.org/stable/c/f271155ff31aca8ef82c61c8df23ca97e9a77dd4
  • git.kernel.org https://git.kernel.org/stable/c/fbfc745db628de31f5c089147deeb87e95b89e66

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.