CVE-2025-71289

Source
https://cve.org/CVERecord?id=CVE-2025-71289
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-71289.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-71289
Downstream
Related
Published
2026-05-06T11:32:21.715Z
Modified
2026-07-15T01:49:16.855137860Z
Summary
fs/ntfs3: handle attr_set_size() errors when truncating files
Details

In the Linux kernel, the following vulnerability has been resolved:

fs/ntfs3: handle attrsetsize() errors when truncating files

If attrsetsize() fails while truncating down, the error is silently ignored and the inode may be left in an inconsistent state.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71289.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
4342306f0f0d5ff4315a204d315c1b51b914fca5
Fixed
3a718675d6af4992e34ffe86b8f36d471a5afe0e
Fixed
d73dcd1520d65a34420761641a36b951b14c8c53
Fixed
6dfea43d11513b7f2892529de55e8f0855108a2c
Fixed
576248a34b927e93b2fd3fff7df735ba73ad7d01

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-71289.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.15.0
Fixed
6.12.92
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.34
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.6

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-71289.json"