CVE-2025-38269

UNKNOWN 0.0

btrfs: exit after state insertion failure at btrfs_convert_extent_bit()

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: btrfs: exit after state insertion failure at btrfs_convert_extent_bit() If insert_state() state failed it returns an error pointer and we call extent_io_tree_panic() which will trigger a BUG() call. However if CONFIG_BUG is disabled, which is an uncommon and exotic scenario, then we fallthrough and call cache_state() which will dereference the error pointer, resulting in an invalid memory access. So jump to the 'out' label after calling extent_io_tree_panic(), it also makes the code more clear besides dealing with the exotic scenario where CONFIG_BUG is disabled.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jul 10, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

c91ea4bfa6dda549295ea7c15dfc990094d1fcd3 < 58c50f45e1821a04d61b62514f9bd34afe67c622 c91ea4bfa6dda549295ea7c15dfc990094d1fcd3 < 8d9d32088e304e2bc444a3087cab0bbbd9951866 c91ea4bfa6dda549295ea7c15dfc990094d1fcd3 < 3bf179e36da917c5d9bec71c714573ed1649b7c1

Linux / Linux

6.7

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/58c50f45e1821a04d61b62514f9bd34afe67c622 git.kernel.org: https://git.kernel.org/stable/c/8d9d32088e304e2bc444a3087cab0bbbd9951866 git.kernel.org: https://git.kernel.org/stable/c/3bf179e36da917c5d9bec71c714573ed1649b7c1