Memory Leak Vulnerability in Linux Kernel's Btrfs Module
CVE-2025-40101

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 30 October 2025

What is CVE-2025-40101?

A vulnerability in the Btrfs module of the Linux kernel could lead to memory leaks when processing certain data profiles. The issue arises during the execution of the btrfs_load_block_group_zone_info() function where an early return on encountering a non-SINGLE mapping type without an RST fails to free allocated memory. Proper management of memory is crucial to prevent resource exhaustion and maintain system stability.

Affected Version(s)

Linux 5906333cc4af7b3fdb8cfff1cb3e8e579bd13174 < 187333e6d484c6630286bfdd07c79d6815a63887

Linux 5906333cc4af7b3fdb8cfff1cb3e8e579bd13174 < 602701d00439e113331ee9c1283e95afdcb8849d

Linux 5906333cc4af7b3fdb8cfff1cb3e8e579bd13174

References

https://git.kernel.org/stable/c/187333e6d484c6630286bfdd0...

https://git.kernel.org/stable/c/602701d00439e113331ee9c12...

https://git.kernel.org/stable/c/fec9b9d3ced39f16be8d7afdf...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 30, 2025
Vulnerability Reserved
Apr 16, 2025

JSON