Linux Kernel Btrfs Null Pointer Dereference Vulnerability in btrfs_search_slot()

Vulnerability

A null pointer dereference vulnerability has been identified in the Btrfs file system implementation of the Linux kernel. This issue arises in the btrfs_search_slot() function, where a sanity check for the Btrfs root is missing. The vulnerability can be triggered when the extent tree root is corrupted, leading to a null reference. As a result, when the scrub operation attempts to search the extent tree for information, it encounters a null pointer dereference, causing a crash.

Impact

Exploitation of this vulnerability leads to a null pointer dereference, causing a kernel crash.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Btrfs Null Pointer Dereference Vulnerability in btrfs_search_slot()

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating