CVE-2025-38358: 
Linux Ubuntu vulnerability analysis and mitigation

CVE-2025-38358 is a vulnerability discovered in the Linux kernel, specifically affecting the btrfs filesystem component. The vulnerability was disclosed on July 25, 2025, and involves a race condition between the async reclaim worker and close_ctree() function. This issue affects the Linux kernel's btrfs implementation, particularly in the handling of delayed iput operations (NVD).

The vulnerability stems from a race condition in the btrfs filesystem where an assertion failure occurs due to an attempt to add a delayed iput after BTRFSFSSTATENODELAYEDIPUT has been set in the fsinfo state. The issue manifests in the btrfsadddelayediput function at fs/btrfs/inode.c:3420. The race condition occurs between the async metadata reclaim worker and the unmount sequence, specifically during the interaction between shrinkdelalloc() and close_ctree() operations (NVD).

The vulnerability can lead to assertion failures in the Linux kernel when specific conditions are met during filesystem operations. While primarily affecting system stability, the issue could potentially cause system crashes or filesystem inconsistencies (NVD).

The issue has been resolved by modifying when the BTRFSFSSTATENODELAYEDIPUT flag is set in the fsinfo state. The fix involves setting this flag only after waiting for async reclaim workers to finish and after running delayed iputs, but before setting the bit (NVD).