CVE-2025-21699: gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag
First published: Wed Feb 12 2025(Updated: )
In the Linux kernel, the following vulnerability has been resolved: gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag Truncate an inode's address space when flipping the GFS2_DIF_JDATA flag: depending on that flag, the pages in the address space will either use buffer heads or iomap_folio_state structs, and we cannot mix the two.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | ||
| Linux Kernel | <5.4.290 | |
| Linux Kernel | >=5.5<5.10.234 | |
| Linux Kernel | >=5.11<5.15.178 | |
| Linux Kernel | >=5.16<6.1.128 | |
| Linux Kernel | >=6.2<6.6.75 | |
| Linux Kernel | >=6.7<6.12.12 | |
| Linux Kernel | =6.13 | |
| Linux Kernel | =6.13-rc1 | |
| Linux Kernel | =6.13-rc2 | |
| Linux Kernel | =6.13-rc3 | |
| Linux Kernel | =6.13-rc4 | |
| Linux Kernel | =6.13-rc5 | |
| Linux Kernel | =6.13-rc6 | |
| Linux Kernel | =6.13-rc7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/2b0bd5051ad1c1e9ef4879f18e15a7712c974f3e
- https://git.kernel.org/stable/c/8c41abc11aa8438c9ed2d973f97e66674c0355df
- https://git.kernel.org/stable/c/4e3ded34f3f3c9d7ed2aac7be8cf51153646574a
- https://git.kernel.org/stable/c/2a40a140e11fec699e128170ccaa98b6b82cb503
- https://git.kernel.org/stable/c/4dd57d1f0e9844311c635a7fb39abce4f2ac5a61
- https://git.kernel.org/stable/c/4516febe325342555bb09ca5b396fb816d655821
- https://git.kernel.org/stable/c/5bb1fd0855bb0abc7d97e44758d6ffed7882d2d0
- https://git.kernel.org/stable/c/7c9d9223802fbed4dee1ae301661bf346964c9d2
Frequently Asked Questions
What is the severity of CVE-2025-21699?
CVE-2025-21699 is categorized as a medium severity vulnerability in the Linux kernel.
How do I fix CVE-2025-21699?
To resolve CVE-2025-21699, it is recommended to update to the latest patched version of the Linux kernel.
What impact does CVE-2025-21699 have on my system?
CVE-2025-21699 can potentially lead to data loss or corruption when using the GFS2 file system.
Is CVE-2025-21699 present in all distributions of Linux?
CVE-2025-21699 affects specific versions of the Linux kernel, so checking the kernel version in use is necessary to determine if it is vulnerable.
Who is affected by CVE-2025-21699?
Users and administrators running affected versions of the Linux kernel with the GFS2 file system enabled may be impacted by CVE-2025-21699.
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/title
- agent/type
- agent/description
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/author
- agent/source
- collector/nvd-api
- source/NVD
- agent/remedy
- agent/last-modified-date
- agent/severity
- agent/softwarecombine
- agent/event
- agent/tags
- vendor/linux
- canonical/linux kernel
- version/linux kernel/5.5
- version/linux kernel/5.11
- version/linux kernel/5.16
- version/linux kernel/6.2
- version/linux kernel/6.7
- version/linux kernel/6.13
- version/linux kernel/6.13-rc1
- version/linux kernel/6.13-rc2
- version/linux kernel/6.13-rc3
- version/linux kernel/6.13-rc4
- version/linux kernel/6.13-rc5
- version/linux kernel/6.13-rc6
- version/linux kernel/6.13-rc7