cve 2025 40025

CVE-2025-40025 is a Linux kernel vulnerability in the F2FS (Flash-Friendly File System) that can cause kernel panics when processing specially crafted F2FS images. The fix introduces a new node type and tightens the sanity_check_node_footer logic to prevent a non-inode dnode from being misinterpreted as an inode, closing a path to assertion failures and kernel oops. This patch has been landed upstream and is relevant for Linux systems using F2FS, particularly in enterprise and data-center environments where file system stability is critical. The vulnerability was discovered through fuzzing and highlights the importance of rigorous input validation in kernel filesystem code.