CVE-2025-40313
Published Dec 8, 2025
Modified Apr 15, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ntfs3: pretend $Extend records as regular files Since commit af153bb63a33 ("vfs: catch invalid modes in may_open()") requires any inode be one of S_IFDIR/S_IFLNK/S_IFREG/S_IFCHR/S_IFBLK/ S_IFIFO/S_IFSOCK type, use S_IFREG for $Extend records.
Is your site exposed to CVE-2025-40313?
Run a free security scan — no signup, results in seconds.
References
Other References
https://git.kernel.org/stable/c/17249b2a65274f73ed68bcd1604e08a60fd8a278
https://git.kernel.org/stable/c/37f65e68ba9852dc51c78dbb54a9881c3f0fe4f7
https://git.kernel.org/stable/c/4e8011ffec79717e5fdac43a7e79faf811a384b7
https://git.kernel.org/stable/c/57534db1bbc4ca772393bb7d92e69d5e7b9051cf
https://git.kernel.org/stable/c/63eb6730ce0604d3eacf036c2f68ea70b068317c
https://git.kernel.org/stable/c/78d46f5276ed3589aaaa435580068c5b62efc921
Frequently Asked Questions
What is CVE-2025-40313? +
In the Linux kernel, the following vulnerability has been resolved:
ntfs3: pretend $Extend records as regular files
Since commit af153bb63a33 ("vfs: catch invalid modes in may_open()")
requires any inode be one of S_IFDIR/S_IFLNK/S_IFREG/S_IFCHR/S_IFBLK/
S_IFIFO/S_IFSOCK type, use S_IFREG for $Extend records.
How do I check if I'm vulnerable to CVE-2025-40313? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.