CVE-2025-22120

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-22120
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-22120.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-22120
Downstream
Related
Published
2025-04-16T14:13:05.289Z
Modified
2025-11-20T08:47:44.411569Z
Summary
ext4: goto right label 'out_mmap_sem' in ext4_setattr()
Details

In the Linux kernel, the following vulnerability has been resolved:

ext4: goto right label 'outmmapsem' in ext4_setattr()

Otherwise, if ext4inodeattachjinode() fails, a hung task will happen because filemapinvalidateunlock() isn't called to unlock mapping->invalidatelock. Like this:

EXT4-fs error (device sda) in ext4setattr:5557: Out of memory INFO: task fsstress:374 blocked for more than 122 seconds. Not tainted 6.14.0-rc1-next-20250206-xfstests-dirty #726 "echo 0 > /proc/sys/kernel/hungtasktimeoutsecs" disables this message. task:fsstress state:D stack:0 pid:374 tgid:374 ppid:373 taskflags:0x440140 flags:0x00000000 Call Trace: <TASK> _schedule+0x2c9/0x7f0 schedule+0x27/0xa0 schedulepreemptdisabled+0x15/0x30 rwsemdownreadslowpath+0x278/0x4c0 downread+0x59/0xb0 pagecacheraunbounded+0x65/0x1b0 filemapgetpages+0x124/0x3e0 filemapread+0x114/0x3d0 vfsread+0x297/0x360 ksysread+0x6c/0xe0 dosyscall64+0x4b/0x110 entrySYSCALL64afterhwframe+0x76/0x7e

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
93011887013dbaa0e3a0285176ca89be153df651
Fixed
551667f99bcf04fa58594d7d19aef73c861a1200
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
b6ce2dbe984bcd7fb0c1df15b5e2fa57e1574a8e
Fixed
45314999f950321a341033ae8f9ac12dce40669b
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c7fc0366c65628fd69bfc310affec4918199aae2
Fixed
32d872e3905746ff1048078256cb00f946b97d8a
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c7fc0366c65628fd69bfc310affec4918199aae2
Fixed
7e91ae31e2d264155dfd102101afc2de7bd74a64

Affected versions

v6.*

v6.12
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.16
v6.12.17
v6.12.18
v6.12.19
v6.12.20
v6.12.21
v6.12.22
v6.12.23
v6.12.24
v6.12.25
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.14.1
v6.6.70
v6.6.71
v6.6.72
v6.6.73
v6.6.74
v6.6.75
v6.6.76
v6.6.77
v6.6.78
v6.6.79
v6.6.80
v6.6.81
v6.6.82
v6.6.83
v6.6.84
v6.6.85
v6.6.86
v6.6.87
v6.6.88

Database specific

vanir_signatures

[
    {
        "digest": {
            "length": 3879.0,
            "function_hash": "1560397399597062189389448381865753213"
        },
        "target": {
            "function": "ext4_setattr",
            "file": "fs/ext4/inode.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7e91ae31e2d264155dfd102101afc2de7bd74a64",
        "id": "CVE-2025-22120-2e6f593a",
        "signature_type": "Function"
    },
    {
        "digest": {
            "line_hashes": [
                "260923217370599031298709156396334173061",
                "253387266541047255165030272401058711494",
                "118671447346803833338530956685183604304",
                "166809949393171511753902993770966395633"
            ],
            "threshold": 0.9
        },
        "target": {
            "file": "fs/ext4/inode.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@32d872e3905746ff1048078256cb00f946b97d8a",
        "id": "CVE-2025-22120-57f1c661",
        "signature_type": "Line"
    },
    {
        "digest": {
            "line_hashes": [
                "260923217370599031298709156396334173061",
                "253387266541047255165030272401058711494",
                "118671447346803833338530956685183604304",
                "166809949393171511753902993770966395633"
            ],
            "threshold": 0.9
        },
        "target": {
            "file": "fs/ext4/inode.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@551667f99bcf04fa58594d7d19aef73c861a1200",
        "id": "CVE-2025-22120-9827a82b",
        "signature_type": "Line"
    },
    {
        "digest": {
            "length": 3869.0,
            "function_hash": "35597950457704055665873022023160373882"
        },
        "target": {
            "function": "ext4_setattr",
            "file": "fs/ext4/inode.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@32d872e3905746ff1048078256cb00f946b97d8a",
        "id": "CVE-2025-22120-b13e3048",
        "signature_type": "Function"
    },
    {
        "digest": {
            "length": 3869.0,
            "function_hash": "35597950457704055665873022023160373882"
        },
        "target": {
            "function": "ext4_setattr",
            "file": "fs/ext4/inode.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@551667f99bcf04fa58594d7d19aef73c861a1200",
        "id": "CVE-2025-22120-e48ad4bb",
        "signature_type": "Function"
    },
    {
        "digest": {
            "line_hashes": [
                "260923217370599031298709156396334173061",
                "253387266541047255165030272401058711494",
                "118671447346803833338530956685183604304",
                "166809949393171511753902993770966395633"
            ],
            "threshold": 0.9
        },
        "target": {
            "file": "fs/ext4/inode.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7e91ae31e2d264155dfd102101afc2de7bd74a64",
        "id": "CVE-2025-22120-f53d0975",
        "signature_type": "Line"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.6.89
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.26
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.14.2