CVE-2025-22121

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to an out-of-bound read in the ext4 xattr inode dec ref all() function. This occurs due to a use-after-free error, as indicated by the KASAN report. The problem arises because ext4 xattr delete inode() does not check if an xattr is valid when it is stored in an inode. To address this, it is suggested to call xattr check inode() to verify the validity of the xattr in the inode, or to perform this check directly in ext4 iget extra inode().

Recommendations To resolve the issue, ensure that the xattr check inode() function is called to verify the validity of xattrs in inodes. As a temporary workaround, consider restricting the use of the ext4 xattr delete inode() function until a patch is available. Additionally, modifying the ext4 iget extra inode() function to directly verify xattr validity can help prevent the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.