CVE-2025-38028
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
NFS/localio: Fix a race in nfs_local_open_fh()
Once the clp->cl_uuid.lock has been dropped, another CPU could come in and free the struct nfsd_file that was just added. To prevent that from happening, take the RCU read lock before dropping the spin lock.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 86e00412254a717ffd5d38dc5ec0ee1cce6281b3 < 185a2f2ddabdcf999823f61de67f86376883920d | affected |
| Linux | Linux | 86e00412254a717ffd5d38dc5ec0ee1cce6281b3 < fa7ab64f1e2fdc8f2603aab8e0dd20de89cb10d9 | affected |
| Linux | Linux | 6.14 | affected |
| Linux | Linux | 0 < 6.14 | unaffected |
| Linux | Linux | 6.14.8 <= 6.14.* | unaffected |
| Linux | Linux | 6.15 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/185a2f2ddabdcf999823f61de67f86376883920d
- https://git.kernel.org/stable/c/fa7ab64f1e2fdc8f2603aab8e0dd20de89cb10d9
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.