Linux Kernel SPU File System Gang Directory Lifetime Vulnerability

Vulnerability

A vulnerability in the Linux kernel's SPU file system gang directory management has been addressed. The issue involved improper handling of gang directory lifetimes, leading to resource leaks. When a gang was created, its directory was opened but not properly closed if a context was kept alive, causing a leak. The initial fix for this problem was inadequate, as it removed the pinning of the gang directory dentry and disrupted the cleanup process. The revised solution involves reverting the previous fix, reintroducing a reference counter for the gang directory, and using a recursive removal method to clean up directories when the counter reaches zero.

Impact

The vulnerability could lead to memory leaks by improperly managing the lifetimes of gang directories in the SPU file system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel SPU File System Gang Directory Lifetime Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating