CVE-2025-38567
BaseFortify
Publication date: 2025-08-19
Last updated on: 2025-11-26
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
| linux | linux_kernel | 6.16 |
| linux | linux_kernel | 6.17 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-362 | The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a reference leak in the Linux kernel's NFS server code, specifically in the function nfsd_open_local_fh(). When two calls to this function race, both may acquire an extra reference to the network object, but only one properly stores the file reference. The other call fails to store the file reference and drops it but does not drop the accompanying network reference, causing a leak. This leak causes the NFS server to hang during shutdown because it waits indefinitely for a network resource to be freed.
How can this vulnerability impact me? :
The impact of this vulnerability is that the NFS server may hang during shutdown due to the leaked network reference. This can lead to resource exhaustion or denial of service conditions where the server cannot properly release resources or restart cleanly.