CVE-2026-23043

UNKNOWN 0.0

btrfs: fix NULL pointer dereference in do_abort_log_replay()

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix NULL pointer dereference in do_abort_log_replay() Coverity reported a NULL pointer dereference issue (CID 1666756) in do_abort_log_replay(). When btrfs_alloc_path() fails in replay_one_buffer(), wc->subvol_path is NULL, but btrfs_abort_log_replay() calls do_abort_log_replay() which unconditionally dereferences wc->subvol_path when attempting to print debug information. Fix this by adding a NULL check before dereferencing wc->subvol_path in do_abort_log_replay().

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Feb 4, 2026
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

2753e49176240f21e4bb10e03514f99e732704bb < 6d1b61b8e1e44888c643d89225ab819b10649b2e 2753e49176240f21e4bb10e03514f99e732704bb < 530e3d4af566ca44807d79359b90794dea24c4f3

Linux / Linux

6.18

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/6d1b61b8e1e44888c643d89225ab819b10649b2e git.kernel.org: https://git.kernel.org/stable/c/530e3d4af566ca44807d79359b90794dea24c4f3