Linux Kernel NFSv4/pNFS Race Condition Vulnerability in Layout Management

Vulnerability

A race condition vulnerability has been identified in the Linux kernel's NFSv4/pNFS implementation, specifically within the layout management process. This vulnerability can cause systems to become unresponsive while waiting for page locks during writeback operations. The issue arises when a task is left waiting on the NFS_LAYOUT_DRAIN bit, despite the corresponding layout header indicating no outstanding operations. This behavior suggests a race between tasks that wait for and those that signal the completion of operations, similar to a previously addressed issue in the SUNRPC component.

Impact

Exploitation of this vulnerability can lead to a deadlock situation, where tasks become stuck in a writeback process, waiting for page locks that are not released, causing system hangs.

Added: Jul 25, 2025, 1:49 PM

Updated: Jul 25, 2025, 6:20 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.3

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NFSv4/pNFS Race Condition Vulnerability in Layout Management

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating