Linux Kernel SMB3 Deferred Close File List Locking Vulnerability

A vulnerability in the Linux kernel's CIFS (Common Internet File System) implementation for SMB3 (Server Message Block version 3) has been addressed. The issue arose because the 'cifs_del_deferred_close' function, which modifies the deferred close file list, was not properly synchronized. This lack of synchronization could lead to concurrent modification issues. The vulnerability affects the stable version of the Linux kernel.

Impact

The vulnerability could lead to race conditions, where the deferred close file list is modified without proper synchronization, potentially causing memory corruption or other unintended behaviors.

Reproduction

The vulnerability can be reproduced by calling the 'cifs_del_deferred_close' function without acquiring the necessary 'deferred_lock'. This can be done in scenarios where deferred close operations are pending, allowing for concurrent modifications to the deferred close file list.

Remediation

Users can update to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version can be found in the Linux kernel documentation.