CVE-2026-43117 PUBLISHED

btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file()

Assigner: Linux
Reserved: 01.05.2026 Published: 06.05.2026 Updated: 08.05.2026

In the Linux kernel, the following vulnerability has been resolved:

btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file()

If overlay is used on top of btrfs, dentry->d_sb translates to overlay's super block and fsid assignment will lead to a crash.

Use file_inode(file)->i_sb to always get btrfs_sb.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
CVSS Score: 9.1

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from bc074524e123ded281cde25ebc5661910f9679e3 to c09a7446aab5773f38d6abb25fce99b8e1dfbc97 (excl.)
  • affected from bc074524e123ded281cde25ebc5661910f9679e3 to 32372781d664a9b03c40343e96c29d0a6139f97d (excl.)
  • affected from bc074524e123ded281cde25ebc5661910f9679e3 to 2e4adfaec97ee053ad1bdfb5036845e66f7e0d8a (excl.)
  • affected from bc074524e123ded281cde25ebc5661910f9679e3 to d110d7cdb045715c0b45b0dfd974525bb38f653d (excl.)
  • affected from bc074524e123ded281cde25ebc5661910f9679e3 to a85b46db143fda5869e7d8df8f258ccef5fa1719 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 4.8 is affected
  • unaffected from 0 to 4.8 (excl.)
  • unaffected from 6.6.136 to 6.6.* (incl.)
  • unaffected from 6.12.83 to 6.12.* (incl.)
  • unaffected from 6.18.24 to 6.18.* (incl.)
  • unaffected from 6.19.14 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References