CVE-2025-21722

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, specifically in the nilfs2 filesystem. The issue occurs when the filesystem detects corruption and falls back to read-only, causing inconsistencies in the buffer state and potentially leading to a use-after-free issue. This happens when the mark buffer dirty() function is called to set a data or metadata buffer as dirty, but it detects that the buffer is not in the uptodate state. Another issue arises when nilfs btree propagate() detects that the origin buffer is not dirty, even though it should be. These issues are caused by callbacks that handle page/folio write requests, which forcibly clear various states, including the working state of the buffers they hold, at unexpected times when they detect read-only fallback.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.