Linux Kernel NFS Buffer Overflow Vulnerability in Sysfs Link RPC Client

Vulnerability

A buffer overflow vulnerability has been identified in the Linux kernel's NFS implementation. The issue arises in the 'nfs_sysfs_link_rpc_client()' function, where a character array of 64 bytes is used. The size of 'clnt->cl_program->name' is unknown, leading to a potential buffer overflow when 'strcat()' is used. This vulnerability has been addressed by replacing 'strcat()' with safer alternatives, 'strscpy()' and 'strncat()'.

Impact

Exploitation of this vulnerability could lead to a buffer overflow, which may allow for arbitrary code execution or causing a denial-of-service condition.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NFS Buffer Overflow Vulnerability in Sysfs Link RPC Client

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating