Linux Kernel Btrfs Missing Error Handling Vulnerability in get_canonical_dev_path Function

Vulnerability

A vulnerability in the Linux kernel's Btrfs file system was introduced by inadequate error handling in the get_canonical_dev_path function. The function calls d_path() to retrieve the final device path, but d_path() can return an error. If this error occurs, the subsequent strscpy() call may cause an invalid memory access. The vulnerability has been addressed by restoring the necessary error handling for d_path().

Impact

The vulnerability could lead to invalid memory access, potentially causing a denial-of-service condition by crashing the system or creating a vulnerability that could be exploited to execute arbitrary code.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Btrfs Missing Error Handling Vulnerability in get_canonical_dev_path Function

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating