CVE-2025-38567
- Source
- https://cve.org/CVERecord?id=CVE-2025-38567
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38567.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-38567
- Downstream
- Published
- 2025-08-19T17:02:48.306Z
- Modified
- 2026-05-15T11:54:00.798926997Z
- Summary
- nfsd: avoid ref leak in nfsd_open_local_fh()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
nfsd: avoid ref leak in nfsdopenlocal_fh()
If two calls to nfsdopenlocalfh() race and both successfully call nfsdfileacquirelocal(), they will both get an extra reference to the net to accompany the file reference stored in *pnf.
One of them will fail to store (using xchg()) the file reference in *pnf and will drop that reference but WON'T drop the accompanying reference to the net. This leak means that when the nfs server is shut down it will hang in nfsdshutdownnet() waiting for &nn->nfsdnetfree_done.
This patch adds the missing nfsdnetput().
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38567.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/c4bf8f26c51e51bbb840935659a7b3b65a802c07
- https://git.kernel.org/stable/c/e5a73150776f18547ee685c9f6bfafe549714899
- https://git.kernel.org/stable/c/fcb0a417fddb605530c4837e0996620f8ed38023
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38567.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-38567
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git