2448690 – (CVE-2025-71269) CVE-2025-71269 kernel: btrfs: do not free data reservation in fallback from inline due to -ENOSPC

Bug 2448690 (CVE-2025-71269) - CVE-2025-71269 kernel: btrfs: do not free data reservation in fallback from inline due to -ENOSPC

Summary: CVE-2025-71269 kernel: btrfs: do not free data reservation in fallback from i...

Keywords:
Status:	NEW
Alias:	CVE-2025-71269
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2026-03-18 18:02 UTC by OSIDB Bzimport
Modified:	2026-03-19 02:46 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-03-18 18:02:34 UTC

In the Linux kernel, the following vulnerability has been resolved:

btrfs: do not free data reservation in fallback from inline due to -ENOSPC

If we fail to create an inline extent due to -ENOSPC, we will attempt to
go through the normal COW path, reserve an extent, create an ordered
extent, etc. However we were always freeing the reserved qgroup data,
which is wrong since we will use data. Fix this by freeing the reserved
qgroup data in __cow_file_range_inline() only if we are not doing the
fallback (ret is <= 0).

Comment 1 Jon Moroney 2026-03-18 19:49:01 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026031816-CVE-2025-71269-b47d@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.