CVE-2025-38615
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-38615
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38615.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-38615
- Downstream
- Related
- Published
- 2025-08-19T17:03:57.164Z
- Modified
- 2025-11-20T10:25:01.199339Z
- Summary
- fs/ntfs3: cancle set bad inode after removing name fails
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
fs/ntfs3: cancle set bad inode after removing name fails
The reproducer uses a file0 on a ntfs3 file system with a corrupted i_link. When renaming, the file0's inode is marked as a bad inode because the file name cannot be deleted.
The underlying bug is that makebadinode() is called on a live inode. In some cases it's "icache lookup finds a normal inode, dsplicealias() is called to attach it to dentry, while another thread decides to call makebadinode() on it - that would evict it from icache, but we'd already found it there earlier". In some it's outright "we have an inode attached to dentry - that's how we got it in the first place; let's call makebadinode() on it just for shits and giggles".
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/358d4f821c03add421a4c49290538a705852ccf1
- https://git.kernel.org/stable/c/3ed2cc6a6e93fbeb8c0cafce1e7fb1f64a331dcc
- https://git.kernel.org/stable/c/a285395020780adac1ffbc844069c3d700bf007a
- https://git.kernel.org/stable/c/b35a50d639ca5259466ef5fea85529bb4fb17d5b
- https://git.kernel.org/stable/c/d99208b91933fd2a58ed9ed321af07dacd06ddc3
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced78ab59fee07f22464f32eafebab2bd97ba94ff2dFixedb35a50d639ca5259466ef5fea85529bb4fb17d5b
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced78ab59fee07f22464f32eafebab2bd97ba94ff2dFixed3ed2cc6a6e93fbeb8c0cafce1e7fb1f64a331dcc
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced78ab59fee07f22464f32eafebab2bd97ba94ff2dFixed358d4f821c03add421a4c49290538a705852ccf1
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced78ab59fee07f22464f32eafebab2bd97ba94ff2dFixeda285395020780adac1ffbc844069c3d700bf007a
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced78ab59fee07f22464f32eafebab2bd97ba94ff2dFixedd99208b91933fd2a58ed9ed321af07dacd06ddc3
Affected versions
v5.*
v5.14
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.15
v6.12.16
v6.12.17
v6.12.18
v6.12.19
v6.12.2
v6.12.20
v6.12.21
v6.12.22
v6.12.23
v6.12.24
v6.12.25
v6.12.26
v6.12.27
v6.12.28
v6.12.29
v6.12.3
v6.12.30
v6.12.31
v6.12.32
v6.12.33
v6.12.34
v6.12.35
v6.12.36
v6.12.37
v6.12.38
v6.12.39
v6.12.4
v6.12.40
v6.12.41
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.15.1
v6.15.2
v6.15.3
v6.15.4
v6.15.5
v6.15.6
v6.15.7
v6.15.8
v6.15.9
v6.16
v6.16-rc1
v6.16-rc2
v6.16-rc3
v6.16-rc4
v6.16-rc5
v6.16-rc6
v6.16-rc7
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.100
v6.6.101
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.50
v6.6.51
v6.6.52
v6.6.53
v6.6.54
v6.6.55
v6.6.56
v6.6.57
v6.6.58
v6.6.59
v6.6.6
v6.6.60
v6.6.61
v6.6.62
v6.6.63
v6.6.64
v6.6.65
v6.6.66
v6.6.67
v6.6.68
v6.6.69
v6.6.7
v6.6.70
v6.6.71
v6.6.72
v6.6.73
v6.6.74
v6.6.75
v6.6.76
v6.6.77
v6.6.78
v6.6.79
v6.6.8
v6.6.80
v6.6.81
v6.6.82
v6.6.83
v6.6.84
v6.6.85
v6.6.86
v6.6.87
v6.6.88
v6.6.89
v6.6.9
v6.6.90
v6.6.91
v6.6.92
v6.6.93
v6.6.94
v6.6.95
v6.6.96
v6.6.97
v6.6.98
v6.6.99
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
vanir_signatures
[
{
"id": "CVE-2025-38615-07bc8f2e",
"target": {
"file": "fs/ntfs3/ntfs_fs.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"119931099895481809768701785194324838096",
"169797265472969314870883076030360157234",
"285570676337316898499458628480714609975",
"299745666083930315288923165493126525072",
"209193705718156394578565196887535108764"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a285395020780adac1ffbc844069c3d700bf007a",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-2165954a",
"target": {
"file": "fs/ntfs3/frecord.c",
"function": "ni_rename"
},
"digest": {
"length": 379.0,
"function_hash": "297926048625672208378098618393252507843"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a285395020780adac1ffbc844069c3d700bf007a",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-3e0f947c",
"target": {
"file": "fs/ntfs3/namei.c",
"function": "ntfs_rename"
},
"digest": {
"length": 1916.0,
"function_hash": "76380304976134914293110342949925485901"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d99208b91933fd2a58ed9ed321af07dacd06ddc3",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-57249142",
"target": {
"file": "fs/ntfs3/namei.c",
"function": "ntfs_rename"
},
"digest": {
"length": 1916.0,
"function_hash": "76380304976134914293110342949925485901"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a285395020780adac1ffbc844069c3d700bf007a",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-646d430e",
"target": {
"file": "fs/ntfs3/frecord.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"151109627895093723271868236099577353980",
"319171513618323642236190398126013117404",
"302674352763107513431201942114187476634",
"104522922470285057095979205422093418215",
"265784830227962660908570915183803190786",
"60245723685112702191194476890697737324",
"193351636930152879563377283308931985617",
"200421206010969043400456693840846670660",
"111750521918946771143595165595956500960",
"227910303604715025301213599369904009993"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a285395020780adac1ffbc844069c3d700bf007a",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-6b5a50d6",
"target": {
"file": "fs/ntfs3/frecord.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"151109627895093723271868236099577353980",
"319171513618323642236190398126013117404",
"302674352763107513431201942114187476634",
"104522922470285057095979205422093418215",
"265784830227962660908570915183803190786",
"60245723685112702191194476890697737324",
"193351636930152879563377283308931985617",
"200421206010969043400456693840846670660",
"111750521918946771143595165595956500960",
"227910303604715025301213599369904009993"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d99208b91933fd2a58ed9ed321af07dacd06ddc3",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-8b81e88e",
"target": {
"file": "fs/ntfs3/frecord.c",
"function": "ni_rename"
},
"digest": {
"length": 379.0,
"function_hash": "297926048625672208378098618393252507843"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d99208b91933fd2a58ed9ed321af07dacd06ddc3",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-994b7e19",
"target": {
"file": "fs/ntfs3/namei.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"245043685118240527868614343248699733763",
"39859731595100167448792511856907745818",
"192816662709279500163270135056132024266",
"41166712357373985902536960690532251052",
"249487599024419644752417551992932356483",
"326197623374309717629432069501072085142",
"118479073932127456226893012318257147376",
"114978032885967746031598075114425004083",
"33487487315111966419302109704387270271",
"224308919195566743000660515696041143918",
"232610186180880338226255153760448092237",
"173121823056841972823587967922132138800"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ed2cc6a6e93fbeb8c0cafce1e7fb1f64a331dcc",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-9cadffa2",
"target": {
"file": "fs/ntfs3/frecord.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"151109627895093723271868236099577353980",
"319171513618323642236190398126013117404",
"302674352763107513431201942114187476634",
"104522922470285057095979205422093418215",
"265784830227962660908570915183803190786",
"60245723685112702191194476890697737324",
"193351636930152879563377283308931985617",
"200421206010969043400456693840846670660",
"111750521918946771143595165595956500960",
"227910303604715025301213599369904009993"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ed2cc6a6e93fbeb8c0cafce1e7fb1f64a331dcc",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-a06e8c7a",
"target": {
"file": "fs/ntfs3/frecord.c",
"function": "ni_rename"
},
"digest": {
"length": 379.0,
"function_hash": "297926048625672208378098618393252507843"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b35a50d639ca5259466ef5fea85529bb4fb17d5b",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-a23cb935",
"target": {
"file": "fs/ntfs3/ntfs_fs.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"119931099895481809768701785194324838096",
"169797265472969314870883076030360157234",
"285570676337316898499458628480714609975",
"299745666083930315288923165493126525072",
"209193705718156394578565196887535108764"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d99208b91933fd2a58ed9ed321af07dacd06ddc3",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-a62fbfda",
"target": {
"file": "fs/ntfs3/namei.c",
"function": "ntfs_rename"
},
"digest": {
"length": 1916.0,
"function_hash": "76380304976134914293110342949925485901"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b35a50d639ca5259466ef5fea85529bb4fb17d5b",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-a8361f3f",
"target": {
"file": "fs/ntfs3/frecord.c",
"function": "ni_rename"
},
"digest": {
"length": 379.0,
"function_hash": "297926048625672208378098618393252507843"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ed2cc6a6e93fbeb8c0cafce1e7fb1f64a331dcc",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-b5987ffc",
"target": {
"file": "fs/ntfs3/namei.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"245043685118240527868614343248699733763",
"39859731595100167448792511856907745818",
"192816662709279500163270135056132024266",
"41166712357373985902536960690532251052",
"249487599024419644752417551992932356483",
"326197623374309717629432069501072085142",
"118479073932127456226893012318257147376",
"114978032885967746031598075114425004083",
"33487487315111966419302109704387270271",
"224308919195566743000660515696041143918",
"232610186180880338226255153760448092237",
"173121823056841972823587967922132138800"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a285395020780adac1ffbc844069c3d700bf007a",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-b7dde4ae",
"target": {
"file": "fs/ntfs3/ntfs_fs.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"119931099895481809768701785194324838096",
"169797265472969314870883076030360157234",
"285570676337316898499458628480714609975",
"280885687884555570362007353170553149340",
"115081442155043480794160638089557109782"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ed2cc6a6e93fbeb8c0cafce1e7fb1f64a331dcc",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-c331930b",
"target": {
"file": "fs/ntfs3/namei.c",
"function": "ntfs_rename"
},
"digest": {
"length": 1916.0,
"function_hash": "76380304976134914293110342949925485901"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ed2cc6a6e93fbeb8c0cafce1e7fb1f64a331dcc",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-c7bd107d",
"target": {
"file": "fs/ntfs3/namei.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"245043685118240527868614343248699733763",
"39859731595100167448792511856907745818",
"192816662709279500163270135056132024266",
"41166712357373985902536960690532251052",
"249487599024419644752417551992932356483",
"326197623374309717629432069501072085142",
"118479073932127456226893012318257147376",
"114978032885967746031598075114425004083",
"33487487315111966419302109704387270271",
"224308919195566743000660515696041143918",
"232610186180880338226255153760448092237",
"173121823056841972823587967922132138800"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b35a50d639ca5259466ef5fea85529bb4fb17d5b",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-ccb263c4",
"target": {
"file": "fs/ntfs3/frecord.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"151109627895093723271868236099577353980",
"319171513618323642236190398126013117404",
"302674352763107513431201942114187476634",
"104522922470285057095979205422093418215",
"265784830227962660908570915183803190786",
"60245723685112702191194476890697737324",
"193351636930152879563377283308931985617",
"200421206010969043400456693840846670660",
"111750521918946771143595165595956500960",
"227910303604715025301213599369904009993"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b35a50d639ca5259466ef5fea85529bb4fb17d5b",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-d4c5622c",
"target": {
"file": "fs/ntfs3/namei.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"245043685118240527868614343248699733763",
"39859731595100167448792511856907745818",
"192816662709279500163270135056132024266",
"41166712357373985902536960690532251052",
"249487599024419644752417551992932356483",
"326197623374309717629432069501072085142",
"118479073932127456226893012318257147376",
"114978032885967746031598075114425004083",
"33487487315111966419302109704387270271",
"224308919195566743000660515696041143918",
"232610186180880338226255153760448092237",
"173121823056841972823587967922132138800"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d99208b91933fd2a58ed9ed321af07dacd06ddc3",
"signature_version": "v1"
},
{
"id": "CVE-2025-38615-fc81d5c5",
"target": {
"file": "fs/ntfs3/ntfs_fs.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"119931099895481809768701785194324838096",
"169797265472969314870883076030360157234",
"285570676337316898499458628480714609975",
"299745666083930315288923165493126525072",
"209193705718156394578565196887535108764"
]
},
"deprecated": false,
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b35a50d639ca5259466ef5fea85529bb4fb17d5b",
"signature_version": "v1"
}
]