cve/rejected/2025/CVE-2025-0927.json - pub/scm/linux/security/vulns - Git at Google

 {
     "containers": {
         "cna": {
             "affected": [
                 {
                     "defaultStatus": "unaffected",
                     "product": "Linux Kernel",
                     "vendor": "Linux",
                     "versions": [
                         {
                             "status": "affected",
                             "version": "0"
                         }
                     ]
                 }
             ],
             "descriptions": [
                 {
                     "lang": "en",
                     "supportingMedia": [
                         {
                             "base64": false,
                             "type": "text/html",
                             "value": "In the Linux kernel, the following vulnerability has been found:<br>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;  <br>A heap overflow in the hfs and hfsplus filesystems can happen if a user mounts a manually crafted filesystem.<br>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;  <br>At this point in time, it is not fixed in any released kernel version, this is a stop-gap report to notify that kernel.org is now the owner of this CVE id.  &nbsp; &nbsp; <br>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;  <br>The Linux kernel CVE team has been assigned CVE-2025-0927 as it was incorrectly created by a different CNA that really should have known better to not have done this.to this issue.<br>"
                         }
                     ],
                     "value": "In the Linux kernel, the following vulnerability has been found:\n               \nA heap overflow in the hfs and hfsplus filesystems can happen if a user mounts a manually crafted filesystem.\n               \nAt this point in time, it is not fixed in any released kernel version, this is a stop-gap report to notify that kernel.org is now the owner of this CVE id.      \n               \nThe Linux kernel CVE team has been assigned CVE-2025-0927 as it was incorrectly created by a different CNA that really should have known better to not have done this.to this issue."
                 }
             ],
             "problemTypes": [
                 {
                     "descriptions": [
                         {
                             "description": "heap overflow in the hfs and hfsplus filesystems with manually crafted filesystem",
                             "lang": "en"
                         }
                     ]
                 }
             ],
             "providerMetadata": {
                 "orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038"
             },
             "references": [
                 {
                     "url": "https://www.kernel.org/"
                 }
             ],
             "source": {
                 "discovery": "UNKNOWN"
             },
             "x_generator": {
                 "engine": "Vulnogram 0.2.0"
             }
         }
     },
     "cveMetadata": {
         "assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038",
         "cveId": "CVE-2025-0927",
         "requesterUserId": "gregkh@kernel.org",
         "serial": 1,
         "state": "PUBLISHED"
     },
     "dataType": "CVE_RECORD",
     "dataVersion": "5.1"
 }
	{
	"containers": {
	"cna": {
	"affected": [
	{
	"defaultStatus": "unaffected",
	"product": "Linux Kernel",
	"vendor": "Linux",
	"versions": [
	{
	"status": "affected",
	"version": "0"
	}
	]
	}
	],
	"descriptions": [
	{
	"lang": "en",
	"supportingMedia": [
	{
	"base64": false,
	"type": "text/html",
	"value": "In the Linux kernel, the following vulnerability has been found:<br>              <br>A heap overflow in the hfs and hfsplus filesystems can happen if a user mounts a manually crafted filesystem.<br>              <br>At this point in time, it is not fixed in any released kernel version, this is a stop-gap report to notify that kernel.org is now the owner of this CVE id.     <br>              <br>The Linux kernel CVE team has been assigned CVE-2025-0927 as it was incorrectly created by a different CNA that really should have known better to not have done this.to this issue.<br>"
	}
	],
	"value": "In the Linux kernel, the following vulnerability has been found:\n \nA heap overflow in the hfs and hfsplus filesystems can happen if a user mounts a manually crafted filesystem.\n \nAt this point in time, it is not fixed in any released kernel version, this is a stop-gap report to notify that kernel.org is now the owner of this CVE id. \n \nThe Linux kernel CVE team has been assigned CVE-2025-0927 as it was incorrectly created by a different CNA that really should have known better to not have done this.to this issue."
	}
	],
	"problemTypes": [
	{
	"descriptions": [
	{
	"description": "heap overflow in the hfs and hfsplus filesystems with manually crafted filesystem",
	"lang": "en"
	}
	]
	}
	],
	"providerMetadata": {
	"orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038"
	},
	"references": [
	{
	"url": "https://www.kernel.org/"
	}
	],
	"source": {
	"discovery": "UNKNOWN"
	},
	"x_generator": {
	"engine": "Vulnogram 0.2.0"
	}
	}
	},
	"cveMetadata": {
	"assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038",
	"cveId": "CVE-2025-0927",
	"requesterUserId": "gregkh@kernel.org",
	"serial": 1,
	"state": "PUBLISHED"
	},
	"dataType": "CVE_RECORD",
	"dataVersion": "5.1"
	}