Linux Kernel Btrfs Qgroup Self-Test Ulist Leak Vulnerability

Vulnerability

A vulnerability in the Linux kernel's Btrfs file system has been addressed, concerning improper management of ulist memory in the quota group (qgroup) self-tests. The issue arose in the 'test_no_shared_qgroup()' and 'test_multiple_refs()' functions, where the tests failed to release allocated memory for 'old_roots' ulist before exiting, leading to memory leaks. This problem occurred when the tests could not successfully add tree references or remove extent items or references, causing an early return without freeing the allocated resources.

Impact

The vulnerability could lead to memory leaks within the Btrfs quota group self-test functions, potentially causing increased memory usage or exhaustion over time.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Btrfs Qgroup Self-Test Ulist Leak Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating