vulnerability

Red Hat: CVE-2025-38498: kernel: do_change_type(): refuse to operate on unmounted/not ours mounts (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:N/I:P/A:C)	Jul 30, 2025	Jul 31, 2025	Jan 28, 2026

Severity

CVSS

(AV:L/AC:L/Au:S/C:N/I:P/A:C)

Published

Jul 30, 2025

Added

Jul 31, 2025

Modified

Jan 28, 2026

Description

In the Linux kernel, the following vulnerability has been resolved:

do_change_type(): refuse to operate on unmounted/not ours mounts

Ensure that propagation settings can only be changed for mounts located
in the caller's mount namespace. This change aligns permission checking
with the rest of mount(2).

Solutions

no-fix-redhat-rpm-packageredhat-upgrade-kernelredhat-upgrade-kernel-rt

References

NVD-CVE-2025-38498
REDHAT-RHSA-2025:16372
REDHAT-RHSA-2025:16398
REDHAT-RHSA-2025:17958
REDHAT-RHSA-2025:21469

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today