Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Lockd Vulnerability in File Unlocking Process

Vulnerability

A vulnerability in the Linux kernel's lockd component has been addressed. The issue arose because the vfs_lock_file function required the file_lock structure to be fully initialized by the caller. It was observed that the re-exported NFSv3 could crash (Oops) if the fl_file field was left NULL. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability could lead to a system crash (Oops) when using the re-exported NFSv3, due to the improper handling of file locks.

Reproduction

The vulnerability can be reproduced by using the re-exported NFSv3 with a file that has not been properly locked, leading to a crash when the system attempts to unlock it.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been fixed.

Added: Sep 15, 2025, 7:00 PM
Updated: Sep 15, 2025, 7:00 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
0.5
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.