CVE-2025-40209

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak exists in the btrfs file system within the Linux kernel, specifically in the btrfs add qgroup relation function. This occurs when the function is called with invalid qgroup levels where the source level is greater than or equal to the destination level. In such cases, the function returns an error without freeing a preallocated qgroup list structure. The caller unconditionally sets the pointer to NULL after the call, preventing cleanup, leading to a memory leak. This can be repeatedly triggered by a user with access to a writable btrfs mount, potentially exhausting kernel memory. The vulnerable code pattern is present in btrfs ioctl qgroup assign(). The leak involves 64 bytes per failed operation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.