Primary

Context

Linux Kernel Btrfs NULL Pointer Dereference Vulnerability in Log Replay Handling

Vulnerability

Patched

A NULL pointer dereference vulnerability has been identified in the Linux kernel's Btrfs file system. This issue arises in the 'do_abort_log_replay()' function, where a NULL pointer is unconditionally dereferenced when the 'btrfs_alloc_path()' function fails. The vulnerability is present in the stable versions of the Linux kernel.

Impact

Exploitation of this vulnerability leads to a NULL pointer dereference, causing a crash or undefined behavior in the kernel.

Remediation

Users can upgrade to the latest stable version of the Linux kernel to address this vulnerability.

Added: Feb 4, 2026, 4:24 PM

Updated: Feb 4, 2026, 4:41 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

7.7

relevance

2.5

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

7.7

relevance

2.5

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Btrfs NULL Pointer Dereference Vulnerability in Log Replay Handling

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating