CVE-2026-43117

Summary

In the Linux kernel, the following vulnerability has been resolved:

btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file()

If overlay is used on top of btrfs, dentry->d_sb translates to overlay's super block and fsid assignment will lead to a crash.

Use file_inode(file)->i_sb to always get btrfs_sb.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxbc074524e123ded281cde25ebc5661910f9679e3 < 4a7bab35fad5251c8cb738161152578cd83b6b9caffected
LinuxLinuxbc074524e123ded281cde25ebc5661910f9679e3 < 520e8b4bcf872a534a7bf61ccf880047642df296affected
LinuxLinuxbc074524e123ded281cde25ebc5661910f9679e3 < e252db8ca2a01f82d472091f35d549b313278636affected
LinuxLinuxbc074524e123ded281cde25ebc5661910f9679e3 < c09a7446aab5773f38d6abb25fce99b8e1dfbc97affected
LinuxLinuxbc074524e123ded281cde25ebc5661910f9679e3 < 32372781d664a9b03c40343e96c29d0a6139f97daffected
LinuxLinuxbc074524e123ded281cde25ebc5661910f9679e3 < 2e4adfaec97ee053ad1bdfb5036845e66f7e0d8aaffected
LinuxLinuxbc074524e123ded281cde25ebc5661910f9679e3 < d110d7cdb045715c0b45b0dfd974525bb38f653daffected
LinuxLinuxbc074524e123ded281cde25ebc5661910f9679e3 < a85b46db143fda5869e7d8df8f258ccef5fa1719affected
LinuxLinux4.8affected
LinuxLinux0 < 4.8unaffected
LinuxLinux5.10.258 <= 5.10.*unaffected
LinuxLinux5.15.209 <= 5.15.*unaffected
LinuxLinux6.1.175 <= 6.1.*unaffected
LinuxLinux6.6.136 <= 6.6.*unaffected
LinuxLinux6.12.83 <= 6.12.*unaffected
LinuxLinux6.18.24 <= 6.18.*unaffected
LinuxLinux6.19.14 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References