Linux Kernel Btrfs Denial-of-Service Vulnerability in Folio Mapping Handling

Vulnerability

A denial-of-service vulnerability has been identified in the Linux kernel's Btrfs file system. The issue arises in the 'relocate_one_folio()' function, where the folio is unlocked after being read. This allows another thread to modify the folio's mapping before it is relocked, potentially leading to a null pointer dereference and a kernel crash. The vulnerability is particularly problematic when relocating data concurrently with transaction aborts, causing a crash by dereferencing a null pointer.

Impact

Exploitation of this vulnerability leads to a kernel crash due to a null pointer dereference, causing a denial-of-service condition.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Btrfs Denial-of-Service Vulnerability in Folio Mapping Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating