CVE-2025-71159Use After Free in Linux

CWE-416Use After FreeCWE-367Time-of-check Time-of-use (TOCTOU) Race Condition6 documents6 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 94.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedJan 23

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free warning in btrfs_get_or_create_delayed_node() Previously, btrfs_get_or_create_delayed_node() set the delayed_node's refcount before acquiring the root->delayed_nodes lock. Commit e8513c012de7 ("btrfs: implement ref_tracker for delayed_nodes") moved refcount_set inside the critical section, which means there is no longer a memory barrier between setting the refcount and setting btrfs_inode->delayed_nod

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

NVDlinux/linux_kernel6.186.18.6+1
Debianlinux/linux_kernel< 6.18.8-1
CVEListV5linux/linuxe8513c012de75fd65e2df5499572bc6ef3f6e409c8385851a5435f4006281828d428e5d0b0bbf8af+2
debiandebian/linux< linux 6.18.8-1 (forky)

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-h6p2-5h78-3xmh: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free warning in btrfs_get_or_create_delayed_node() Previous2026-01-23
OSV
CVE-2025-71159: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free warning in btrfs_get_or_create_delayed_node() Previously2026-01-23

📋Vendor Advisories

2
Red Hat
kernel: btrfs: fix use-after-free warning in btrfs_get_or_create_delayed_node()2026-01-23
Debian
CVE-2025-71159: linux - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix ...2025

🕵️Threat Intelligence

1
Wiz
CVE-2025-71159 Impact, Exploitability, and Mitigation Steps | Wiz