Vulnerability Details
Basic Information
| Title | CVE-2025-37863 |
|---|---|
| Type | cve |
| Published | 2025-05-09T07:16:07 |
| Last Seen | 2025-05-09T07:28:34 |
| CVSS Score | 0.0 () |
CVSS v3 Details
| Attack Vector | |
|---|---|
| Attack Complexity | |
| Privileges Required | |
| User Interaction | |
| Scope | |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
CVE Information
| CVE IDs | CVE-2025-37863 |
|---|---|
| CWE | |
| Bulletin Family | cve |
Description
In the Linux kernel, the following vulnerability has been resolved:
ovl: don’t allow datadir only
In theory overlayfs could support upper layer directly referring to a data
layer, but there’s no current use case for this.
Originally, when data-only layers were introduced, this wasn’t allowed,
only introduced by the “datadir+” feature, but without actually handling
this case, resulting in an Oops.
Fix by disallowing datadir without lowerdir.
Impact Assessment
| Base Score | 0.0 |
|---|---|
| Severity |