CVE-2025-21879

HIGH 7.8

btrfs: fix use-after-free on inode when scanning root during em shrinking

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free on inode when scanning root during em shrinking At btrfs_scan_root() we are accessing the inode's root (and fs_info) in a call to btrfs_fs_closing() after we have scheduled the inode for a delayed iput, and that can result in a use-after-free on the inode in case the cleaner kthread does the iput before we dereference the inode in the call to btrfs_fs_closing(). Fix this by using the fs_info stored already in a local variable instead of doing inode->root->fs_info.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Mar 27, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

fef55c4d9c9c22264d2b2ceae1e26922cb6129a5 < 07836bc18f4ae42da4e922244f4685561c18755e 1020443840569535f6025a855958f07ea3eebf71 < 5e79d26014f9386387575b9ed60d342057cee49b 1020443840569535f6025a855958f07ea3eebf71 < 59f37036bb7ab3d554c24abc856aabca01126414

Linux / Linux

6.13

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/07836bc18f4ae42da4e922244f4685561c18755e git.kernel.org: https://git.kernel.org/stable/c/5e79d26014f9386387575b9ed60d342057cee49b git.kernel.org: https://git.kernel.org/stable/c/59f37036bb7ab3d554c24abc856aabca01126414