CVE-2025-71184NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference7 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 95.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedJan 31

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix NULL dereference on root when tracing inode eviction When evicting an inode the first thing we do is to setup tracing for it, which implies fetching the root's id. But in btrfs_evict_inode() the root might be NULL, as implied in the next check that we do in btrfs_evict_inode(). Hence, we either should set the ->root_objectid to 0 in case the root is NULL, or we move tracing setup after checking that the root is not

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

Linuxlinux/linux_kernel2.6.396.6.130+2
NVDlinux/linux_kernel2.6.39.16.6.130+4
Debianlinux/linux_kernel< 6.12.69-1+1
CVEListV5linux/linux1abe9b8a138c9988ba8f7bfded6453649a31541f64d8abd8c5305795a2b35fc96039d99d34f5e762+4
debiandebian/linux< linux 6.18.8-1 (forky)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
OSV
CVE-2025-71184: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix NULL dereference on root when tracing inode eviction When evicting an i2026-01-31
GHSA
GHSA-p93h-vc42-6hf8: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix NULL dereference on root when tracing inode eviction When evicting an2026-01-31
OSV
btrfs: fix NULL dereference on root when tracing inode eviction2026-01-31

📋Vendor Advisories

2
Red Hat
kernel: btrfs: fix NULL dereference on root when tracing inode eviction2026-01-31
Debian
CVE-2025-71184: linux - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix ...2025

🕵️Threat Intelligence

1
Wiz
CVE-2025-71184 Impact, Exploitability, and Mitigation Steps | Wiz