{"id":"CVE-2024-56774","summary":"btrfs: add a sanity check for btrfs root in btrfs_search_slot()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: add a sanity check for btrfs root in btrfs_search_slot()\n\nSyzbot reports a null-ptr-deref in btrfs_search_slot().\n\nThe reproducer is using rescue=ibadroots, and the extent tree root is\ncorrupted thus the extent tree is NULL.\n\nWhen scrub tries to search the extent tree to gather the needed extent\ninfo, btrfs_search_slot() doesn't check if the target root is NULL or\nnot, resulting the null-ptr-deref.\n\nAdd sanity check for btrfs root before using it in btrfs_search_slot().","modified":"2026-04-02T12:25:15.170870Z","published":"2025-01-08T17:49:13.121Z","related":["SUSE-SU-2025:0289-1","SUSE-SU-2025:0428-1","SUSE-SU-2025:0499-1","SUSE-SU-2025:0557-1","SUSE-SU-2025:20165-1","SUSE-SU-2025:20166-1","SUSE-SU-2025:20248-1","SUSE-SU-2025:20249-1","USN-7379-2","USN-7380-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56774.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/3ed51857a50f530ac7a1482e069dfbd1298558d4"},{"type":"WEB","url":"https://git.kernel.org/stable/c/757171d1369b3b47f36932d40a05a0715496dcab"},{"type":"WEB","url":"https://git.kernel.org/stable/c/93992c3d9629b02dccf6849238559d5c24f2dece"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c71d114ef68c95da5a82ec85a721ab31f5bd905b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/db66fb87c21e8ae724886e6a464dcbac562a64c6"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/56xxx/CVE-2024-56774.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-56774"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"42437a6386ffeaaf200731e73d723ea491f3fe7d"},{"fixed":"c71d114ef68c95da5a82ec85a721ab31f5bd905b"},{"fixed":"db66fb87c21e8ae724886e6a464dcbac562a64c6"},{"fixed":"757171d1369b3b47f36932d40a05a0715496dcab"},{"fixed":"93992c3d9629b02dccf6849238559d5c24f2dece"},{"fixed":"3ed51857a50f530ac7a1482e069dfbd1298558d4"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-56774.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}