Linux Kernel Mount Management Vulnerability in legitimize_mnt Function

Vulnerability

A vulnerability has been identified in the Linux kernel within the legitimize_mnt function, related to improper handling of mount synchronization during the unmounting process. The issue arises because the function does not correctly manage the mount reference count when a mount is being synchronously unmounted. This can lead to an incorrect reference count, allowing for potential exploitation by 'stealing' a mount reference and causing a delayed release, which could be manipulated. The vulnerability highlights the need for a proper lock during the synchronization check to prevent such issues.

Impact

Exploitation of this vulnerability could lead to improper management of mount references, potentially allowing for manipulation of the mount reference count and causing unintended behavior in the mount management system.

Added: Jun 18, 2025, 11:03 AM

Updated: Jun 18, 2025, 11:03 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Mount Management Vulnerability in legitimize_mnt Function

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating