CVE-2025-38382

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-38382
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-38382.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-38382
Downstream
Related
Published
2025-07-25T13:15:27Z
Modified
2025-08-12T21:01:18Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

btrfs: fix iteration of extrefs during log replay

At _inodeaddref() when processing extrefs, if we jump into the next label we have an undefined value of victimname.len, since we haven't initialized it before we did the goto. This results in an invalid memory access in the next iteration of the loop since victim_name.len was not initialized to the length of the name of the current extref.

Fix this by initializing victim_name.len with the current extref's name length.

References

Affected packages