Linux Kernel NFSv4 Deadlock Vulnerability in State Recovery on Sillyrenamed Files

Vulnerability

A deadlock vulnerability has been identified in the Linux kernel's NFSv4 implementation, specifically during the state recovery process for files that have been sillyrenamed. When such a file is marked for deletion upon closing, a server reboot can initiate an open reclaim process. This can conflict with an application's close() call, leading to a deadlock. The issue arises because the delegreturn call, triggered by the put_nfs_open_context() function, is not privileged, causing the deadlock. The vulnerability has been addressed by modifying the delegation return process to be asynchronous, preventing the deadlock scenario.

Impact

Exploitation of this vulnerability can lead to a deadlock situation, causing the system to hang and potentially disrupting NFS operations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NFSv4 Deadlock Vulnerability in State Recovery on Sillyrenamed Files

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating