CVE-2025-71266

EUVD-2025-208819

18.03.2026, 11:16

In the Linux kernel, the following vulnerability has been resolved:

fs: ntfs3: check return value of indx_find to avoid infinite loop

We found an infinite loop bug in the ntfs3 file system that can lead to a
Denial-of-Service (DoS) condition.

A malformed dentry in the ntfs3 filesystem can cause the kernel to hang
during the lookup operations. By setting the HAS_SUB_NODE flag in an
INDEX_ENTRY within a directory's INDEX_ALLOCATION block and manipulating the
VCN pointer, an attacker can cause the indx_find() function to repeatedly
read the same block, allocating 4 KB of memory each time. The kernel lacks
VCN loop detection and depth limits, causing memory exhaustion and an OOM
crash.

This patch adds a return value check for fnd_push() to prevent a memory
exhaustion vulnerability caused by infinite loops. When the index exceeds the
size of the fnd->nodes array, fnd_push() returns -EINVAL. The indx_find()
function checks this return value and stops processing, preventing further
memory allocation.

Infinite Loop

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 2%

Affected Products (NVD)

Vendor	Product	Version
linux	linux_kernel	5.15.1 ≤ 𝑥 < 5.15.202
linux	linux_kernel	5.16 ≤ 𝑥 < 6.1.165
linux	linux_kernel	6.2 ≤ 𝑥 < 6.6.128
linux	linux_kernel	6.7 ≤ 𝑥 < 6.12.75
linux	linux_kernel	6.13 ≤ 𝑥 < 6.18.16
linux	linux_kernel	6.19 ≤ 𝑥 < 6.19.6
linux	linux_kernel	5.15

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.170-3 fixed
bookworm (security)	6.1.174-1 fixed
bullseye	5.10.223-1 fixed
bullseye (security)	5.10.257-1 fixed
forky	7.0.12-2 fixed
sid	7.0.13-1 fixed
trixie	6.12.86-1 fixed
trixie (security)	6.12.94-1 fixed

linux-6.1

bullseye (security)

6.1.174-1~deb11u1

fixed

Amazon Linux Releases

Amazon Package

Release

bpftool

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

bpftool-debuginfo

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

bpftool6.12

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

bpftool6.12-debuginfo

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

bpftool6.18

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

bpftool6.18-debuginfo

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-debuginfo

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-debuginfo-common-aarch64

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-debuginfo-common-x86_64

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-devel

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-headers

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-libbpf

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-libbpf-debuginfo

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-libbpf-devel

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-libbpf-static

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-livepatch-6.1.166-197.305

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-livepatch-6.12.77-99.140

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-livepatch-6.18.16-18.222

Amazon Linux 2023

1:1.0-0.amzn2023

fixed

kernel-modules-extra

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-modules-extra-common

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-tools

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-tools-debuginfo

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel-tools-devel

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

kernel6.12

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-debuginfo

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-debuginfo-common-aarch64

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-debuginfo-common-x86_64

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-devel

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-headers

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-libbpf

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-libbpf-debuginfo

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-libbpf-devel

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-libbpf-static

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-modules-extra

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-modules-extra-common

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-tools

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-tools-debuginfo

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.12-tools-devel

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

kernel6.18

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-debuginfo

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-debuginfo-common-aarch64

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-debuginfo-common-x86_64

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-devel

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-headers

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-libbpf

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-libbpf-debuginfo

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-libbpf-devel

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-libbpf-static

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-modules-extra

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-modules-extra-common

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-tools

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-tools-debuginfo

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

kernel6.18-tools-devel

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

perf

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

perf-debuginfo

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

perf6.12

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

perf6.12-debuginfo

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

perf6.18

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

perf6.18-debuginfo

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

python3-perf

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

python3-perf-debuginfo

Amazon Linux 2023

1:6.1.166-197.305.amzn2023

fixed

python3-perf6.12

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

python3-perf6.12-debuginfo

Amazon Linux 2023

1:6.12.77-99.140.amzn2023

fixed

python3-perf6.18

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

python3-perf6.18-debuginfo

Amazon Linux 2023

1:6.18.16-18.222.amzn2023

fixed

Azure Linux Releases

Azure Package

Release

kernel

Azure Linux 3.0

0:6.6.130.1-1.azl3

fixed

Common Weakness Enumeration

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
The program contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

References

https://git.kernel.org/stable/c/0ad7a1be44479503dbe5c699759861ef5b8bd70c

https://git.kernel.org/stable/c/14c3188afbedfd5178bbabb8002487ea14b37b56

https://git.kernel.org/stable/c/1732053c8a6b360e2d5afb1b34fe9779398b072c

https://git.kernel.org/stable/c/398e768d1accd1f5645492ab996005d7aa84a5b0

https://git.kernel.org/stable/c/435d34719db0e130f6f0c621d67ed524cc1a7d10

https://git.kernel.org/stable/c/68e32694be231c1cdb99b7637a657314e88e1a96

https://git.kernel.org/stable/c/b0ea441f44ce64fa514a415d4a9e6e2b06e7946c