CVE-2026-43358 PUBLISHED

btrfs: add missing RCU unlock in error path in try_release_subpage_extent_buffer()

Assigner: Linux
Reserved: 01.05.2026 Published: 08.05.2026 Updated: 08.05.2026

In the Linux kernel, the following vulnerability has been resolved:

btrfs: add missing RCU unlock in error path in try_release_subpage_extent_buffer()

Call rcu_read_lock() before exiting the loop in try_release_subpage_extent_buffer() because there is a rcu_read_unlock() call past the loop.

This has been detected by the Clang thread-safety analyzer.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from ad580dfa388fabb52af033e3f8cc5d04be985e54 to 5e1ab71f74a1e61f1254dff128a764fdebaec0b8 (excl.)
  • affected from ad580dfa388fabb52af033e3f8cc5d04be985e54 to 35b0c8768e848e1b7e32052db36b5fa59b6a33a1 (excl.)
  • affected from ad580dfa388fabb52af033e3f8cc5d04be985e54 to b2840e33127ce0eea880504b7f133e780f567a9b (excl.)
  • Version 10ec363cfefeeb77fda4c1ac20a531f21de45264 is affected
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.17 is affected
  • unaffected from 0 to 6.17 (excl.)
  • unaffected from 6.18.19 to 6.18.* (incl.)
  • unaffected from 6.19.9 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References