VYPR
← All advisories
Unrated severityNVD Advisory· Published Dec 30, 2025· Updated Apr 15, 2026

CVE-2023-54185

CVE-2023-54185

Description

In the Linux kernel, the following vulnerability has been resolved:

btrfs: remove BUG_ON()'s in add_new_free_space()

At add_new_free_space() we have these BUG_ON()'s that are there to deal with any failure to add free space to the in memory free space cache. Such failures are mostly -ENOMEM that should be very rare. However there's no need to have these BUG_ON()'s, we can just return any error to the caller and all callers and their upper call chain are already dealing with errors.

So just make add_new_free_space() return any errors, while removing the BUG_ON()'s, and returning the total amount of added free space to an optional u64 pointer argument.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Linux kernel btrfs removes BUG_ON()'s in add_new_free_space() to handle errors like -ENOMEM gracefully instead of crashing.

Vulnerability

Analysis

In the Linux kernel's btrfs filesystem, the function add_new_free_space() contained multiple BUG_ON() calls that would trigger a kernel panic if adding free space to the in-memory free space cache failed. Such failures are typically due to memory allocation errors (-ENOMEM) which, while rare, could occur under memory pressure.

Exploitation

An attacker with local access and the ability to trigger memory exhaustion could potentially cause a denial-of-service (DoS) condition by forcing a BUG_ON() crash. No special privileges are required beyond the ability to manipulate btrfs operations that call this function, such as certain file operations or filesystem management actions.

Impact

The bug converts a potentially recoverable error into a system crash, leading to denial of service. By removing the BUG_ON() calls and returning errors to callers, the system can handle memory allocation failures more gracefully, allowing other parts of the kernel to manage the error without crashing the system.

Mitigation

The fix is implemented in commit [1], which changes add_new_free_space() to return errors instead of triggering BUG_ON. The commit is included in the Linux kernel stable tree, and users should apply the corresponding kernel update to mitigate the vulnerability.

References
  1. Making sure you're not a bot!

AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

1

Patches

3
23e72231f828
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
f775ceb0cb53
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit
d8ccbd21918f
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.gitvia osv
commit

Vulnerability mechanics

Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

3

News mentions

0

No linked articles in our index yet.