CVE-2025-21879

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue has been identified in the Linux kernel, specifically in the btrfs file system. The issue occurs when scanning the root during em shrinking, where the btrfs scan root() function accesses the inode's root and fs info after scheduling the inode for a delayed iput. This can result in a use-after-free on the inode if the cleaner kthread performs the iput before the inode is dereferenced in the call to btrfs fs closing(). The issue is resolved by using the fs info stored in a local variable instead of accessing it through inode->root->fs info.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.