CVE-2025-40128Out-of-bounds Write in Kernel

CWE-787Out-of-bounds Write3 documents3 sources
Severity
N/A
No vector
EPSS
No EPSS data
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Linux Kernel
Timeline
PublishedNov 12

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix symbolic link reading when bs > ps [BUG DURING BS > PS TEST] When running the following script on a btrfs whose block size is larger than page size, e.g. 8K block size and 4K page size, it will trigger a kernel BUG: # mkfs.btrfs -s 8k $dev # mount $dev $mnt # mkdir $mnt/dir # ln -s dir $mnt/link # ls $mnt/link The call trace looks like this: BTRFS warning (device dm-2): support for block size 8192 with page size

Affected Packages1 packages

Linuxlinux/linux_kernel6.17.06.17.3

🔴Vulnerability Details

2
GHSA
GHSA-7vqf-5393-q6gv: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix symbolic link reading when bs > ps [BUG DURING BS > PS TEST] When run2025-11-12
OSV
btrfs: fix symbolic link reading when bs > ps2025-11-12

📋Vendor Advisories

1
Red Hat
kernel: btrfs: fix symbolic link reading when bs > ps2025-11-12