CVE-2025-40101

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak issue was addressed in the Linux kernel related to the btrfs filesystem. Specifically, the issue occurs when rejecting a non-SINGLE data profile without a RAID stripe tree (RST). The btrfs load block group zone info() function fails to free allocated memory in certain scenarios, leading to memory leaks. The fix involves ensuring that cleanup code is executed even when returning early due to an invalid data profile.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Leak

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401CWE-404

Related Identifiers

BDU:2026-02694

CVE-2025-40101

OPENSUSE-SU-2025:15702-1

OPENSUSE-SU-2025:20172-1

OPENSUSE-SU-2026:10301-1

SUSE-SU-2026:20012-1

SUSE-SU-2026:20015-1

SUSE-SU-2026:20021-1

USN-8029-1

USN-8029-2

USN-8029-3

USN-8030-1

USN-8048-1

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8165-1

USN-8261-1

Affected Products

Linuxmint

Linux Kernel

Ubuntu

Btrfs

CVE-2025-40101

Weakness Enumeration

Related Identifiers

Affected Products

References · 1979