CVE-2025-39842
published 2025-09-19CVE-2025-39842: In the Linux kernel, the following vulnerability has been resolved: ocfs2: prevent release journal inode after journal shutdown Before calling…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
In the Linux kernel, the following vulnerability has been resolved:
ocfs2: prevent release journal inode after journal shutdown
Before calling ocfs2_delete_osb(), ocfs2_journal_shutdown() has already
been executed in ocfs2_dismount_volume(), so osb->journal must be NULL.
Therefore, the following calltrace will inevitably fail when it reaches
jbd2_journal_release_jbd_inode().
ocfs2_dismount_volume()->
ocfs2_delete_osb()->
ocfs2_free_slot_info()->
__ocfs2_free_slot_info()->
evict()->
ocfs2_evict_inode()->
ocfs2_clear_inode()->
jbd2_journal_release_jbd_inode(osb->journal->j_journal,
Adding osb->journal checks will prevent null-ptr-deref during the above
execution path.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | linux | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| debian | linux-6.1 | < linux 6.1.153-1 (bookworm) | linux 6.1.153-1 (bookworm) |
| linux | linux | — | — |
| linux | linux | >= da5e7c87827e8caa6a1eeec6d95dcf74ab592a01 < 42c415c53ad2065088cc411d08925effa5b3d255 | 42c415c53ad2065088cc411d08925effa5b3d255 |
| linux | linux | >= da5e7c87827e8caa6a1eeec6d95dcf74ab592a01 < e9188f66e94955431ddbe2cd1cdf8ff2bb486abf | e9188f66e94955431ddbe2cd1cdf8ff2bb486abf |
| linux | linux | >= da5e7c87827e8caa6a1eeec6d95dcf74ab592a01 < f4a917e6cd6c798f7adf39907f117fc754db1283 | f4a917e6cd6c798f7adf39907f117fc754db1283 |
| linux | linux | >= da5e7c87827e8caa6a1eeec6d95dcf74ab592a01 < 85e66331b60601d903cceaf8c10a234db863cd78 | 85e66331b60601d903cceaf8c10a234db863cd78 |
| linux | linux | >= da5e7c87827e8caa6a1eeec6d95dcf74ab592a01 < f46e8ef8bb7b452584f2e75337b619ac51a7cadf | f46e8ef8bb7b452584f2e75337b619ac51a7cadf |
| linux | linux_kernel | — | — |
| linux | linux_kernel | >= 0 < 6.1.153-1 | 6.1.153-1 |
| linux | linux_kernel | >= 0 < 6.12.48-1 | 6.12.48-1 |
| linux | linux_kernel | >= 0 < 6.16.6-1 | 6.16.6-1 |
| linux | linux_kernel | >= 0 < 6.8.0-106.106 | 6.8.0-106.106 |
| linux | linux_kernel | >= 5.16 < 6.1.151 | 6.1.151 |
| linux | linux_kernel | >= 6.13 < 6.16.6 | 6.16.6 |
| linux | linux_kernel | >= 6.2 < 6.6.105 | 6.6.105 |
| linux | linux_kernel | >= 6.7 < 6.12.46 | 6.12.46 |
| msrc | azl3_kernel_6.6.104.2-4_on_azure_linux_3.0 | — | — |
| msrc | azl3_kernel_6.6.96.2-2_on_azure_linux_3.0 | — | — |
| ubuntu | linux-xilinx | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv5.5MEDIUM