{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-68239","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-12-16T13:41:40.263Z","datePublished":"2025-12-16T14:21:16.889Z","dateUpdated":"2026-05-11T21:49:31.391Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T21:49:31.391Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbinfmt_misc: restore write access before closing files opened by open_exec()\n\nbm_register_write() opens an executable file using open_exec(), which\ninternally calls do_open_execat() and denies write access on the file to\navoid modification while it is being executed.\n\nHowever, when an error occurs, bm_register_write() closes the file using\nfilp_close() directly. This does not restore the write permission, which\nmay cause subsequent write operations on the same file to fail.\n\nFix this by calling exe_file_allow_write_access() before filp_close() to\nrestore the write permission properly."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/binfmt_misc.c"],"versions":[{"version":"e7850f4d844e0acfac7e570af611d89deade3146","lessThan":"480ac88431703f2adbb8e6b5bd73c3f3cf9f3d7f","status":"affected","versionType":"git"},{"version":"e7850f4d844e0acfac7e570af611d89deade3146","lessThan":"fbab8c08e1a6dbaef81e22d672a7647553101d16","status":"affected","versionType":"git"},{"version":"e7850f4d844e0acfac7e570af611d89deade3146","lessThan":"6cce7bc7fac8471c832696720d9c8f2a976d9c54","status":"affected","versionType":"git"},{"version":"e7850f4d844e0acfac7e570af611d89deade3146","lessThan":"e785f552ab04dbca01d31f0334f4561240b04459","status":"affected","versionType":"git"},{"version":"e7850f4d844e0acfac7e570af611d89deade3146","lessThan":"90f601b497d76f40fa66795c3ecf625b6aced9fd","status":"affected","versionType":"git"},{"version":"467a50d5db7deaf656e18a1f633be9ecd94b393a","status":"affected","versionType":"git"},{"version":"4a8b4124ea4156ca52918b66c750a69c6d932aa5","status":"affected","versionType":"git"},{"version":"3fe116e33a855bbfdd32dc207e9be2a41e3ed3a6","status":"affected","versionType":"git"},{"version":"c0e0ab60d0b15469e69db93215dad009999f5a5b","status":"affected","versionType":"git"},{"version":"5ab9464a2a3c538eedbb438f1802f2fd98d0953f","status":"affected","versionType":"git"},{"version":"d28492be82e19fc69cc69975fc2052b37ef0c821","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/binfmt_misc.c"],"versions":[{"version":"5.12","status":"affected"},{"version":"0","lessThan":"5.12","status":"unaffected","versionType":"semver"},{"version":"6.1.167","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.130","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.78","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.17.9","lessThanOrEqual":"6.17.*","status":"unaffected","versionType":"semver"},{"version":"6.18","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12","versionEndExcluding":"6.1.167"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12","versionEndExcluding":"6.6.130"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12","versionEndExcluding":"6.12.78"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12","versionEndExcluding":"6.17.9"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.12","versionEndExcluding":"6.18"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.9.262"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.14.226"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.19.181"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.4.106"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.10.24"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.11.7"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/480ac88431703f2adbb8e6b5bd73c3f3cf9f3d7f"},{"url":"https://git.kernel.org/stable/c/fbab8c08e1a6dbaef81e22d672a7647553101d16"},{"url":"https://git.kernel.org/stable/c/6cce7bc7fac8471c832696720d9c8f2a976d9c54"},{"url":"https://git.kernel.org/stable/c/e785f552ab04dbca01d31f0334f4561240b04459"},{"url":"https://git.kernel.org/stable/c/90f601b497d76f40fa66795c3ecf625b6aced9fd"}],"title":"binfmt_misc: restore write access before closing files opened by open_exec()","x_generator":{"engine":"bippy-1.2.0"}}}}