CVE-2025-21679

UNKNOWN 0.0

btrfs: add the missing error handling inside get_canonical_dev_path

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: btrfs: add the missing error handling inside get_canonical_dev_path Inside function get_canonical_dev_path(), we call d_path() to get the final device path. But d_path() can return error, and in that case the next strscpy() call will trigger an invalid memory access. Add back the missing error handling for d_path().

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jan 31, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

5d261f60b5c82ba1e4b5555252e1c90c43d96015 < d0fb5741932b831eded49bfaaf33353e96200d6d 7e06de7c83a746e58d4701e013182af133395188 < fe4de594f7a2e9bc49407de60fbd20809fad4192

Linux / Linux

6.12.5 < 6.12.11

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/d0fb5741932b831eded49bfaaf33353e96200d6d git.kernel.org: https://git.kernel.org/stable/c/fe4de594f7a2e9bc49407de60fbd20809fad4192