{"id":"CVE-2025-71268","summary":"btrfs: fix reservation leak in some error paths when inserting inline extent","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix reservation leak in some error paths when inserting inline extent\n\nIf we fail to allocate a path or join a transaction, we return from\n__cow_file_range_inline() without freeing the reserved qgroup data,\nresulting in a leak. Fix this by ensuring we call btrfs_qgroup_free_data()\nin such cases.","modified":"2026-03-20T12:46:40.963592Z","published":"2026-03-18T17:40:58.080Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71268.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/28768bd3abf9995a93f6e01bfce01c60622964dd"},{"type":"WEB","url":"https://git.kernel.org/stable/c/28b97fcbbf523779688e8de5fe55bf2dae3859f6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c1c050f92d8f6aac4e17f7f2230160794fceef0c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f3ee1732851aec6fe6b2cec2ef1b32d4e71d9913"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f7156512c8166d385f574b9ec030479aa7b1e8c9"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/71xxx/CVE-2025-71268.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-71268"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"94ed938aba557aa798acf496f09afb289b619fcd"},{"fixed":"f7156512c8166d385f574b9ec030479aa7b1e8c9"},{"fixed":"28b97fcbbf523779688e8de5fe55bf2dae3859f6"},{"fixed":"f3ee1732851aec6fe6b2cec2ef1b32d4e71d9913"},{"fixed":"28768bd3abf9995a93f6e01bfce01c60622964dd"},{"fixed":"c1c050f92d8f6aac4e17f7f2230160794fceef0c"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-71268.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.4.0"},{"fixed":"6.1.163"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.124"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.70"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.10"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-71268.json"}}],"schema_version":"1.7.5"}