CVE-2025-38393

Summary

In the Linux kernel, the following vulnerability has been resolved:

NFSv4/pNFS: Fix a race to wake on NFS_LAYOUT_DRAIN

We found a few different systems hung up in writeback waiting on the same page lock, and one task waiting on the NFS_LAYOUT_DRAIN bit in pnfs_update_layout(), however the pnfs_layout_hdr's plh_outstanding count was zero.

It seems most likely that this is another race between the waiter and waker similar to commit ed0172af5d6f ("SUNRPC: Fix a race to wake a sync task"). Fix it up by applying the advised barrier.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8acc3e228e1c90bd410f73597a4549e0409f22d6 < 08287df60bac5b008b6bcdb03053988335d3d282affected
LinuxLinuxec23a86e060cbe30b62eb2955adc97c92d80cc4c < 8846fd02c98da8b79e6343a20e6071be6f372180affected
LinuxLinux880265c77ac415090090d1fe72a188fee71cb458 < e4b13885e7ef1e64e45268feef1e5f0707c47e72affected
LinuxLinux880265c77ac415090090d1fe72a188fee71cb458 < 8ca65fa71024a1767a59ffbc6a6e2278af84735eaffected
LinuxLinux880265c77ac415090090d1fe72a188fee71cb458 < 864a54c1243ed3ca60baa4bc492dede1361f4c83affected
LinuxLinux880265c77ac415090090d1fe72a188fee71cb458 < 1f4da20080718f258e189a2c5f515385fa393da6affected
LinuxLinux880265c77ac415090090d1fe72a188fee71cb458 < c01776287414ca43412d1319d2877cbad65444acaffected
LinuxLinuxf133819e24e78f3aaaa00e9fa2b816d5f73fd172affected
LinuxLinux5.10.124 < 5.10.240affected
LinuxLinux5.15.49 < 5.15.187affected
LinuxLinux5.18.6 < 5.19affected
LinuxLinux5.19affected
LinuxLinux0 < 5.19unaffected
LinuxLinux5.10.240 <= 5.10.*unaffected
LinuxLinux5.15.187 <= 5.15.*unaffected
LinuxLinux6.1.144 <= 6.1.*unaffected
LinuxLinux6.6.97 <= 6.6.*unaffected
LinuxLinux6.12.37 <= 6.12.*unaffected
LinuxLinux6.15.6 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

Additional References

References