CVE-2025-21964

In the Linux kernel, the following vulnerability has been resolved:

cifs: Fix integer overflow while processing acregmax mount option

User-provided mount parameter acregmax of type u32 is intended to have
an upper limit, but before it is validated, the value is converted from
seconds to jiffies which can lead to an integer overflow.

Found by Linux Verification Center (linuxtesting.org) with SVACE.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
LinuxCNA
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 4%
VendorProductVersion
linuxlinux_kernel
5.12 ≤
𝑥
< 5.15.180
linuxlinux_kernel
5.16 ≤
𝑥
< 6.1.132
linuxlinux_kernel
6.2 ≤
𝑥
< 6.6.84
linuxlinux_kernel
6.7 ≤
𝑥
< 6.12.20
linuxlinux_kernel
6.13 ≤
𝑥
< 6.13.8
linuxlinux_kernel
6.14:rc1
linuxlinux_kernel
6.14:rc2
linuxlinux_kernel
6.14:rc3
linuxlinux_kernel
6.14:rc4
linuxlinux_kernel
6.14:rc5
linuxlinux_kernel
6.14:rc6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
not-affected
bullseye (security)
5.10.237-1
fixed
bookworm
6.1.137-1
fixed
bookworm (security)
6.1.140-1
fixed
trixie
6.12.27-1
fixed
sid
6.12.30-1
fixed
linux-6.1
bullseye (security)
6.1.137-1~deb11u1
fixed
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/0252c33cc943e9e48ddfafaa6b1eb72adb68a099
https://git.kernel.org/stable/c/5f500874ab9b3cc8c169c2ab49f00b838520b9c5
https://git.kernel.org/stable/c/7489161b1852390b4413d57f2457cd40b34da6cc
https://git.kernel.org/stable/c/833f2903eb8b70faca7967319e580e9ce69729fc
https://git.kernel.org/stable/c/a13351624a6af8d91398860b8c9d4cf6c8e63de5
https://git.kernel.org/stable/c/dd190168e60ac15408f074a1fe0ce36aff34027b