CVE-2024-58089: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-58089 affects the Linux kernel's BTRFS filesystem implementation. The vulnerability was discovered in the handling of delayed allocation ranges when the block size (4K) is smaller than the page size (64K) on aarch64 systems. This issue was disclosed on March 12, 2025, and affects Linux kernel versions from 5.0 to 6.13.5 (NVD).

The vulnerability manifests as a double accounting race condition in the BTRFS filesystem when btrfsrundelalloc_range() fails. The issue occurs specifically when handling ordered extents cleanup during error conditions, where the folio range skipping logic doesn't properly account for subpage cases. This can lead to double cleaning of ranges and trigger ordered extent warnings. The vulnerability has been assigned a CVSS v3.1 score of 5.5 (Medium) with vector AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

When exploited, this vulnerability can cause kernel crashes and system instability, particularly in systems using BTRFS with specific block size configurations. The issue primarily affects system availability through kernel panics caused by NULL pointer dereferences (Kernel Patch).

The issue has been fixed in the Linux kernel through patches that modify the ordered extents cleanup handling. The fix involves changing how cleanup is performed in writepage_delalloc() and removing the problematic folio range split. Users should upgrade to kernel version 6.13.5 or later, or apply the relevant backported patches (Kernel Patch).