Linux Kernel Use-After-Free Vulnerability in Btrfs COW Operation

Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's Btrfs file system. The issue arises during the Copy-On-Write (COW) operation on tree blocks when tracing is enabled and preemption is allowed. Specifically, the vulnerability occurs in the 'btrfs_cow_block()' function, where the last reference to the extent buffer can be released before the corresponding tracepoint is executed. This premature release, managed by the Read-Copy Update (RCU) mechanism, can lead to a use-after-free condition, as the extent buffer may be freed before the tracepoint has completed its execution.

Impact

Exploitation of this vulnerability leads to a use-after-free condition, which can potentially be exploited to execute arbitrary code or cause a denial-of-service by crashing the system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.7

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.7

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Use-After-Free Vulnerability in Btrfs COW Operation

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating