CVE-2025-0927
Linux Kernel HFS+ Heap Overflow Vulnerability
Description
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Filesystem bugs due to corrupt images are not considered a CVE for any filesystem that is only mountable by CAP_SYS_ADMIN in the initial user namespace. That includes delegated mounting.
INFO
Published Date :
March 23, 2025, 3:15 p.m.
Last Modified :
April 8, 2025, 8:15 a.m.
Remotely Exploit :
No
Source :
416baaa9-dc9f-4396-8d5f-8c081fb06d67
Solution
- Address filesystem vulnerabilities related to image processing.
- Apply security patches for image handling libraries.
- Validate image integrity before processing.
Public PoC/Exploit Available at Github
CVE-2025-0927 has a 4 public
PoC/Exploit available at Github.
Go to the Public Exploits tab to see the list.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Minimal Linux kernel fuzzer demo targeting HFS+
C Makefile
None
C
None
HTML Python Shell
A collection of links related to Linux kernel security and exploitation
linux-kernel kernel-exploitation exploit privilege-escalation security
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2025-0927 vulnerability anywhere in the article.
The following table lists the changes that have been made to the
CVE-2025-0927 vulnerability over time.
Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.
-
CVE Modified by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Apr. 08, 2025
Action Type Old Value New Value Changed Description In the Linux kernel, the following vulnerability has been found: A heap overflow in the hfs and hfsplus filesystems can happen if a user mounts a manually crafted filesystem. At this point in time, it is not fixed in any released kernel version, this is a stop-gap report to notify that kernel.org is now the owner of this CVE id. The Linux kernel CVE team has been assigned CVE-2025-0927 as it was incorrectly created by a different CNA that really should have known better to not have done this.to this issue. Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Filesystem bugs due to corrupt images are not considered a CVE for any filesystem that is only mountable by CAP_SYS_ADMIN in the initial user namespace. That includes delegated mounting. Removed CVSS V3.1 Canonical Ltd.: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Removed CVSS V3.1 CISA-ADP: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Removed CWE Canonical Ltd.: CWE-787 Removed Reference kernel.org: https://www.kernel.org/ Removed Reference Canonical Ltd.: https://ubuntu.com/security/CVE-2025-0927 Removed Reference Canonical Ltd.: https://ubuntu.com/security/notices/USN-7276-1 Removed Reference CISA-ADP: https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/ -
CVE Rejected by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Apr. 08, 2025
Action Type Old Value New Value -
CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0
Mar. 31, 2025
Action Type Old Value New Value Added CVSS V3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Removed CWE CWE-122 -
CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0
Mar. 31, 2025
Action Type Old Value New Value Added CWE CWE-122 -
CVE Modified by 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Mar. 30, 2025
Action Type Old Value New Value Changed Description Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. In the Linux kernel, the following vulnerability has been found: A heap overflow in the hfs and hfsplus filesystems can happen if a user mounts a manually crafted filesystem. At this point in time, it is not fixed in any released kernel version, this is a stop-gap report to notify that kernel.org is now the owner of this CVE id. The Linux kernel CVE team has been assigned CVE-2025-0927 as it was incorrectly created by a different CNA that really should have known better to not have done this.to this issue. Added Reference https://www.kernel.org/ -
CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0
Mar. 25, 2025
Action Type Old Value New Value Added Reference https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/ -
New CVE Received by [email protected]
Mar. 23, 2025
Action Type Old Value New Value Added Description Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. Added CVSS V3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Added CWE CWE-787 Added Reference https://ubuntu.com/security/CVE-2025-0927 Added Reference https://ubuntu.com/security/notices/USN-7276-1