CVE-2025-21752Linux vulnerability

5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 80.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedFeb 27

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't use btrfs_set_item_key_safe on RAID stripe-extents Don't use btrfs_set_item_key_safe() to modify the keys in the RAID stripe-tree, as this can lead to corruption of the tree, which is caught by the checks in btrfs_set_item_key_safe(): BTRFS info (device nvme1n1): leaf 49168384 gen 15 total ptrs 194 free space 8329 owner 12 BTRFS info (device nvme1n1): refs 2 lock_owner 1030 current 1030 [ snip ] item 105 key (354

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel6.76.13.3
Debianlinux/linux_kernel< 6.16.3-1
CVEListV5linux/linux02c372e1f016e5113217597ab37b399c4e4074771c25eff52ee5a02a2c4be659a44ae972d9989742+3
debiandebian/linux< linux 6.16.3-1 (forky)

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-r9cf-94mr-8v6q: In the Linux kernel, the following vulnerability has been resolved: btrfs: don't use btrfs_set_item_key_safe on RAID stripe-extents Don't use btrfs_2025-02-27
OSV
CVE-2025-21752: In the Linux kernel, the following vulnerability has been resolved: btrfs: don't use btrfs_set_item_key_safe on RAID stripe-extents Don't use btrfs_se2025-02-27

📋Vendor Advisories

2
Red Hat
kernel: btrfs: don't use btrfs_set_item_key_safe on RAID stripe-extents2025-02-27
Debian
CVE-2025-21752: linux - In the Linux kernel, the following vulnerability has been resolved: btrfs: don'...2025
CVE-2025-21752 — Linux vulnerability | cvebase