Linux Kernel Btrfs Use-After-Free Vulnerability in Delayed Node Management

A use-after-free vulnerability has been identified in the Linux kernel's Btrfs file system, specifically within the delayed node management. The issue arises in the function 'btrfs_get_or_create_delayed_node()', where the reference count of a delayed node is set before acquiring the necessary lock. This change, introduced in a previous commit, removed a critical memory barrier, allowing another thread to access and modify the reference count prematurely. The vulnerability can lead to a reference counting error and a use-after-free warning.

Impact

Exploitation of this vulnerability causes a use-after-free condition, which can lead to memory corruption and potentially allow for arbitrary code execution.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. The specific commit that resolves the issue is '83f59076a1ae6f5c6845d6f7ed3a1a373d883684', which is included in the official Linux kernel stable releases.