CVE-2025-71239

ADVISORY - nist

Summary

In the Linux kernel, the following vulnerability has been resolved:

audit: add fchmodat2() to change attributes class

fchmodat2(), introduced in version 6.6 is currently not in the change attribute class of audit. Calling fchmodat2() to change a file attribute in the same fashion than chmod() or fchmodat() will bypass audit rules such as:

-w /tmp/test -p rwa -k test_rwa

The current patch adds fchmodat2() to the change attributes class.

EPSS Score: 0.00124 (0.025)

Common Weakness Enumeration (CWE)

ADVISORY - nist
ADVISORY - redhat

Protection Mechanism Failure


Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in