Linux Kernel GFS2 Lock Management Race Condition Vulnerability

A race condition vulnerability has been identified in the Linux kernel's GFS2 file system, specifically within the lock management functions. The issue arises in the 'gdlm_put_lock()' function, where there is a narrow time window in which the 'DFL_UNMOUNT' flag is set, but the lockspace has not yet been released. During this interval, the Distributed Lock Manager (DLM) may still invoke 'gdlm_ast()' and 'gdlm_bast()' functions. This can lead to the DLM dereferencing freed glock objects, potentially causing instability or crashes. The vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability can lead to a race condition, where the DLM may access freed memory, potentially causing use-after-free errors or memory corruption.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been addressed. Instructions for downloading the patched version are available on the official Linux kernel website.