{"id":"CVE-2026-43117","summary":"btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file()\n\nIf overlay is used on top of btrfs, dentry-\u003ed_sb translates to overlay's\nsuper block and fsid assignment will lead to a crash.\n\nUse file_inode(file)-\u003ei_sb to always get btrfs_sb.","modified":"2026-06-03T03:55:28.478796036Z","published":"2026-05-06T07:40:41.862Z","related":["CGA-r985-pgf5-xm42"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43117.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/2e4adfaec97ee053ad1bdfb5036845e66f7e0d8a"},{"type":"WEB","url":"https://git.kernel.org/stable/c/32372781d664a9b03c40343e96c29d0a6139f97d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4a7bab35fad5251c8cb738161152578cd83b6b9c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/520e8b4bcf872a534a7bf61ccf880047642df296"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a85b46db143fda5869e7d8df8f258ccef5fa1719"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c09a7446aab5773f38d6abb25fce99b8e1dfbc97"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d110d7cdb045715c0b45b0dfd974525bb38f653d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e252db8ca2a01f82d472091f35d549b313278636"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43117.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-43117"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"bc074524e123ded281cde25ebc5661910f9679e3"},{"fixed":"4a7bab35fad5251c8cb738161152578cd83b6b9c"},{"fixed":"520e8b4bcf872a534a7bf61ccf880047642df296"},{"fixed":"e252db8ca2a01f82d472091f35d549b313278636"},{"fixed":"c09a7446aab5773f38d6abb25fce99b8e1dfbc97"},{"fixed":"32372781d664a9b03c40343e96c29d0a6139f97d"},{"fixed":"2e4adfaec97ee053ad1bdfb5036845e66f7e0d8a"},{"fixed":"d110d7cdb045715c0b45b0dfd974525bb38f653d"},{"fixed":"a85b46db143fda5869e7d8df8f258ccef5fa1719"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43117.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.8.0"},{"fixed":"5.10.258"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.209"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.175"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.136"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.83"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.24"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"6.19.14"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43117.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"}]}