CVE-2025-38503 — Reachable Assertion in Linux
CWE-617 — Reachable AssertionCWE-253 — Incorrect Check of Function Return Value26 documents8 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 97.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedAug 16
Latest updateMar 25
Description
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix assertion when building free space tree
When building the free space tree with the block group tree feature
enabled, we can hit an assertion failure like this:
BTRFS info (device loop0 state M): rebuilding free space tree
assertion failed: ret == 0, in fs/btrfs/free-space-tree.c:1102
------------[ cut here ]------------
kernel BUG at fs/btrfs/free-space-tree.c:1102!
Internal error: Oops - BUG: 00000000f2000800 [#1]…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages3 packages
▶CVEListV5linux/linux1c56ab991903dce60e905a08f431c0e6f79b9b9e — 7c77df23324f60bcff0ea44392e2c82e9486640c+6
Also affects: Debian Linux 11.0
Patches
🔴Vulnerability Details
3OSV▶
CVE-2025-38503: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion when building free space tree When building the free space tr↗2025-08-16
GHSA▶
GHSA-pm7p-wjq9-6m43: In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix assertion when building free space tree
When building the free space↗2025-08-16