CVE-2025-68767

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> hfsplus: Verify inode mode when loading from disk<br /> <br /> syzbot is reporting that S_IFMT bits of inode-&gt;i_mode can become bogus when<br /> the S_IFMT bits of the 16bits "mode" field loaded from disk are corrupted.<br /> <br /> According to [1], the permissions field was treated as reserved in Mac OS<br /> 8 and 9. According to [2], the reserved field was explicitly initialized<br /> with 0, and that field must remain 0 as long as reserved. Therefore, when<br /> the "mode" field is not 0 (i.e. no longer reserved), the file must be<br /> S_IFDIR if dir == 1, and the file must be one of S_IFREG/S_IFLNK/S_IFCHR/<br /> S_IFBLK/S_IFIFO/S_IFSOCK if dir == 0.