3 matches found
CVE-2024-50121
CVE-2024-50121 affects the Linux kernel component nfsd, specifically the race where nfsd_shrinker_work may be cancelled in nfs4_state_shutdown_net without waiting for the shrinker to exit. This can cause warnings and use-after-free scenarios when unhashing and destroying nfsd clients during net s...
CVE-2025-21795
CVE-2025-21795: Linux kernel NFSD hang in nfsd4_shutdown_callback. When nfs4_client is in courtesy state, NFSD still sends the shutdown callback, causing cl_cb_inflight to remain non-zero and the operation to hang for about 15 minutes until the TCP layer reports the connection drop. The fix modif...
CVE-2025-38231
CVE-2025-38231 affects the Linux kernel nfsd component. The vulnerability arises when laundromat_work starts before nfsd_ssc is initialized, risking a NULL pointer dereference in nfs4_state_start_net() via nfs4_laundromat -> nfsd4_ssc_expire_umount. The documented fix moves nfsd_ssc initializa...