Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() The function needs to check the minimal filehandle length before it can access the embedded filehandle.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 4.13, < 5.4.297 |
| Debian | Debian Linux | 11.0 |
References
- https://git.kernel.org/stable/c/12ad3def2e5e0b120e3d0cb6ce8b7b796819ad40Patch
- https://git.kernel.org/stable/c/2ad40b7992aa26bc631afc1a995b0e3ddc30de3fPatch
- https://git.kernel.org/stable/c/3570ef5c31314c13274c935a20b91768ab5bf412Patch
- https://git.kernel.org/stable/c/763810bb883cb4de412a72f338d80947d97df67bPatch
- https://git.kernel.org/stable/c/7dd36f7477d1e03a1fcf8d13531ca326c4fb599fPatch
- https://git.kernel.org/stable/c/7f8eca87fef7519e9c41f3258f25ebc2752247eePatch
- https://git.kernel.org/stable/c/b7f7866932466332a2528fda099000b035303485Patch
- https://git.kernel.org/stable/c/cb09afa0948d96b1e385d609ed044bb1aa043536Patch
- https://git.kernel.org/stable/c/ef93a685e01a281b5e2a25ce4e3428cf9371a205Patch
- https://lists.debian.org/debian-lts-announce/2025/10/msg00007.htmlMailing ListThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2025/10/msg00008.htmlMailing ListThird Party Advisory
FAQ
What is CVE-2025-39730?
CVE-2025-39730 is a vulnerability with a CVSS score of 7.8 (HIGH). In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() The function needs to check the minimal filehandle length before it can ...
How severe is CVE-2025-39730?
CVE-2025-39730 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-39730?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Debian Debian Linux.