CVE-2025-21963: cifs: Fix integer overflow while processing acdirmax mount option
First published: Tue Apr 01 2025(Updated: )
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acdirmax mount option User-provided mount parameter acdirmax of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffies which can lead to an integer overflow. Found by Linux Verification Center (linuxtesting.org) with SVACE.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | ||
| Linux Kernel | >=5.12<5.15.180 | |
| Linux Kernel | >=5.16<6.1.132 | |
| Linux Kernel | >=6.2<6.6.84 | |
| Linux Kernel | >=6.7<6.12.20 | |
| Linux Kernel | >=6.13<6.13.8 | |
| Linux Kernel | =6.14-rc1 | |
| Linux Kernel | =6.14-rc2 | |
| Linux Kernel | =6.14-rc3 | |
| Linux Kernel | =6.14-rc4 | |
| Linux Kernel | =6.14-rc5 | |
| Linux Kernel | =6.14-rc6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/2809a79bc64964ce02e0c5f2d6bd39b9d09bdb3c
- https://git.kernel.org/stable/c/39d086bb3558da9640ef335f97453e01d32578a1
- https://git.kernel.org/stable/c/5b29891f91dfb8758baf1e2217bef4b16b2b165b
- https://git.kernel.org/stable/c/6124cbf73e3dea7591857dd63b8ccece28952afd
- https://git.kernel.org/stable/c/9e438d0410a4002d24f420f2c28897ba2dc0af64
- https://git.kernel.org/stable/c/0c26edf477e093cefc41637f5bccc102e1a77399
Frequently Asked Questions
What is the severity of CVE-2025-21963?
CVE-2025-21963 has been assigned a high severity due to its potential for exploitation in the Linux kernel.
How do I fix CVE-2025-21963?
To fix CVE-2025-21963, ensure you update your Linux kernel to the latest patched version that addresses this vulnerability.
What versions of the Linux kernel are affected by CVE-2025-21963?
CVE-2025-21963 affects multiple versions of the Linux kernel which process the acdirmax mount option without proper validation.
What is the impact of exploiting CVE-2025-21963?
Exploitation of CVE-2025-21963 could lead to unintended behaviors or crashes due to the integer overflow in the acdirmax mount option.
When was CVE-2025-21963 disclosed?
CVE-2025-21963 was disclosed as part of ongoing security improvements in the Linux kernel to prevent integer overflow vulnerabilities.
- agent/weakness
- agent/title
- agent/description
- agent/type
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/source
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/tags
- agent/severity
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/event
- collector/nvd-api
- source/NVD
- vendor/linux
- canonical/linux kernel
- version/linux kernel/5.12
- version/linux kernel/5.16
- version/linux kernel/6.2
- version/linux kernel/6.7
- version/linux kernel/6.13
- version/linux kernel/6.14-rc1
- version/linux kernel/6.14-rc2
- version/linux kernel/6.14-rc3
- version/linux kernel/6.14-rc4
- version/linux kernel/6.14-rc5
- version/linux kernel/6.14-rc6