Linux Kernel Btrfs Invalid Memory Access Vulnerability During Log Replay

Vulnerability

A vulnerability in the Linux kernel's Btrfs file system has been addressed, which involved an invalid memory access during log replay. The issue arose in the __inode_add_ref() function while processing extended references (extrefs). If the function jumped to a certain label without properly initializing the length of the victim name, it led to undefined behavior. This, in turn, caused an invalid memory access in the subsequent iteration of the loop. The vulnerability has been fixed by ensuring that the victim name length is correctly initialized with the length of the current extref's name before the function jumps to the next label.

Impact

Exploitation of this vulnerability could lead to undefined behavior in the kernel, potentially causing a memory corruption issue.

Added: Jul 25, 2025, 2:17 PM

Updated: Jul 25, 2025, 6:48 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Btrfs Invalid Memory Access Vulnerability During Log Replay

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating