{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2025-21679","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-12-29T08:45:45.738Z","datePublished":"2025-01-31T11:25:40.171Z","dateUpdated":"2025-05-04T07:18:54.502Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-05-04T07:18:54.502Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: add the missing error handling inside get_canonical_dev_path\n\nInside function get_canonical_dev_path(), we call d_path() to get the\nfinal device path.\n\nBut d_path() can return error, and in that case the next strscpy() call\nwill trigger an invalid memory access.\n\nAdd back the missing error handling for d_path()."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/btrfs/volumes.c"],"versions":[{"version":"5d261f60b5c82ba1e4b5555252e1c90c43d96015","lessThan":"d0fb5741932b831eded49bfaaf33353e96200d6d","status":"affected","versionType":"git"},{"version":"7e06de7c83a746e58d4701e013182af133395188","lessThan":"fe4de594f7a2e9bc49407de60fbd20809fad4192","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/btrfs/volumes.c"],"versions":[{"version":"6.12.5","lessThan":"6.12.11","status":"affected","versionType":"semver"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.12.5","versionEndExcluding":"6.12.11"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/d0fb5741932b831eded49bfaaf33353e96200d6d"},{"url":"https://git.kernel.org/stable/c/fe4de594f7a2e9bc49407de60fbd20809fad4192"}],"title":"btrfs: add the missing error handling inside get_canonical_dev_path","x_generator":{"engine":"bippy-1.2.0"}}}}