Acknowledged
Created: Jul 28, 2025
Updated: Jul 29, 2025
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:EOL][EOL]btrfs: fix iteration of extrefs during log replay[EOL][EOL]At __inode_add_ref() when processing extrefs, if we jump into the next[EOL]label we have an undefined value of victim_name.len, since we haven't[EOL]initialized it before we did the goto. This results in an invalid memory[EOL]access in the next iteration of the loop since victim_name.len was not[EOL]initialized to the length of the name of the current extref.[EOL][EOL]Fix this by initializing victim_name.len with the current extref's name[EOL]length.
CREATE(Triage):(User=admin) [CVE-2025-38382 (https://nvd.nist.gov/vuln/detail/CVE-2025-38382)
