CVE-2025-22114
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-22114
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-22114.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-22114
- Downstream
- Published
- 2025-04-16T14:12:59Z
- Modified
- 2025-10-22T10:14:55.446137Z
- Summary
- btrfs: don't clobber ret in btrfs_validate_super()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't clobber ret in btrfsvalidatesuper()
Commit 2a9bb78cfd36 ("btrfs: validate system chunk array at btrfsvalidatesuper()") introduces a call to validatesyschunkarray() in btrfsvalidate_super(), which clobbers the value of ret set earlier. This has the effect of negating the validity checks done earlier, making it so btrfs could potentially try to mount invalid filesystems.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced2a9bb78cfd367fdeff74f15b1e98969912292d9eFixedef6800a2015e706e9852a5ec15263fec9990d012
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced2a9bb78cfd367fdeff74f15b1e98969912292d9eFixed9db9c7dd5b4e1d3205137a094805980082c37716
Affected versions
v6.*
v6.13
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.14.1
Database specific
vanir_signatures
[
{
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"211167569158235553477685402750129977989",
"121461378356350174706867229735336341928",
"88101860367477979438908275197481446899"
]
},
"target": {
"file": "fs/btrfs/disk-io.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ef6800a2015e706e9852a5ec15263fec9990d012",
"id": "CVE-2025-22114-2b07a851",
"deprecated": false,
"signature_version": "v1"
},
{
"signature_type": "Function",
"digest": {
"function_hash": "29971973001006044897812248880184261528",
"length": 4864.0
},
"target": {
"file": "fs/btrfs/disk-io.c",
"function": "btrfs_validate_super"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ef6800a2015e706e9852a5ec15263fec9990d012",
"id": "CVE-2025-22114-61576f84",
"deprecated": false,
"signature_version": "v1"
},
{
"signature_type": "Function",
"digest": {
"function_hash": "180123090502950778374263065468623276184",
"length": 4909.0
},
"target": {
"file": "fs/btrfs/disk-io.c",
"function": "btrfs_validate_super"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9db9c7dd5b4e1d3205137a094805980082c37716",
"id": "CVE-2025-22114-851b4c85",
"deprecated": false,
"signature_version": "v1"
},
{
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"211167569158235553477685402750129977989",
"121461378356350174706867229735336341928",
"88101860367477979438908275197481446899"
]
},
"target": {
"file": "fs/btrfs/disk-io.c"
},
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9db9c7dd5b4e1d3205137a094805980082c37716",
"id": "CVE-2025-22114-907878dc",
"deprecated": false,
"signature_version": "v1"
}
]