Volerion logoVolerion
Volerion logoVolerion

Linux Kernel JFS Filesystem Read-Only Check Vulnerability in Transaction Management

Vulnerability

A vulnerability in the Linux kernel's JFS filesystem has been addressed. The issue involved the transaction management function 'txBegin', which did not properly check if the filesystem was mounted as read-only. This oversight could lead to a null pointer dereference. The vulnerability has been fixed by adding a check for read-only filesystems in 'txBegin' before initiating a transaction.

Impact

The vulnerability could lead to a null pointer dereference, potentially causing a system crash or instability.

Reproduction

The vulnerability can be reproduced by mounting a JFS filesystem as read-only and then initiating a transaction using the 'txBegin' function. Without the patch, the function would proceed without recognizing the read-only status, leading to a null pointer dereference.

Remediation

Users can apply the patch available in the Linux kernel stable tree to address this vulnerability.

Added: Dec 8, 2025, 2:21 AM
Updated: Dec 8, 2025, 2:21 AM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
1.4
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.