CVE-2025-22114 — Linux vulnerability
11 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 71.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 16
Latest updateJul 8
Description
In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't clobber ret in btrfs_validate_super()
Commit 2a9bb78cfd36 ("btrfs: validate system chunk array at
btrfs_validate_super()") introduces a call to validate_sys_chunk_array()
in btrfs_validate_super(), which clobbers the value of ret set earlier.
This has the effect of negating the validity checks done earlier, making
it so btrfs could potentially try to mount invalid filesystems.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages5 packages
▶CVEListV5linux/linux2a9bb78cfd367fdeff74f15b1e98969912292d9e — ef6800a2015e706e9852a5ec15263fec9990d012+2
Patches
🔴Vulnerability Details
5OSV▶
CVE-2025-22114: In the Linux kernel, the following vulnerability has been resolved: btrfs: don't clobber ret in btrfs_validate_super() Commit 2a9bb78cfd36 ("btrfs: va↗2025-04-16
GHSA▶
GHSA-7rq4-gjpx-jq6g: In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't clobber ret in btrfs_validate_super()
Commit 2a9bb78cfd36 ("btrfs:↗2025-04-16
📋Vendor Advisories
5Debian▶
CVE-2025-22114: linux - In the Linux kernel, the following vulnerability has been resolved: btrfs: don'...↗2025