CVE-2024-48875: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-48875 is a vulnerability in the Linux kernel's btrfs filesystem component, specifically related to improper locking mechanisms. The issue was discovered and disclosed on January 11, 2025, affecting Linux kernel versions up to 6.6.66 and versions from 6.7 up to 6.12.5. The vulnerability occurs in the btrfs device replacement functionality where a task could attempt to acquire a lock it already holds, potentially leading to a deadlock condition (NVD).

The vulnerability manifests as a recursive locking issue in the btrfs filesystem's device replacement mechanism. Specifically, when running fstests btrfs/011 with MKFSOPTIONS="-O rst" to force RAID stripe-tree usage, a task can attempt to acquire the devreplace rwsem lock while already holding it. This occurs during the btrfsmapblock operation when performing logical to device physical mapping on RAID stripe-tree filesystems. The issue has been assigned a CVSS v3.1 base score of 5.5 (Medium) with vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

The vulnerability can result in a deadlock condition in the Linux kernel's btrfs filesystem, potentially causing system hangs or reduced availability. The impact is primarily focused on system availability, with no direct effect on confidentiality or integrity (NVD).

The vulnerability has been patched in the Linux kernel. The fix involves modifying the code to prevent taking the dev_replace rwsem lock when the task is already the one performing the device replace operation. The patch has been implemented in Linux kernel version 6.12.5 and backported to affected stable versions (Kernel Patch).