摘要:
In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't clobber ret in btrfs_validate_super()
Commit 2a9bb78cfd36 ("btrfs: validate system chunk array at
btrfs_validate_super()") introduces a call to validate_sys_chunk_array()
in btrfs_validate_super(), which clobbers the value of ret set earlier.
This has the effect of negating the validity checks done earlier, making
it so btrfs could potentially try to mount invalid filesystems.
安全等级: Low
公告ID: KylinSec-SA-2025-2389
发布日期: 2025年4月28日
关联CVE: CVE-2025-22114
Linux内核修复了以下漏洞:
btrfs:修复btrfs_validate_super()中ret值被覆盖的问题
提交2a9bb78cfd36("btrfs: validate system chunk array at btrfs_validate_super()")在btrfs_validate_super()中引入了validate_sys_chunk_array()调用,但该调用会覆盖之前设置的ret值。这导致先前执行的合法性检查结果被忽略,可能使btrfs尝试挂载无效的文件系统。
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2025-22114 | KY3.4-5A | kernel | Unaffected |
| CVE-2025-22114 | V6 | kernel | Unaffected |
