2025-12-16 13:43:02
Linux
PUBLISHED
In the Linux kernel, the following vulnerability has been resolved: nfs4_setup_readdir(): insufficient locking for ->d_parent->d_inode dereferencing Theoretically its an oopsable race, but I dont believe one can manage to hit it on real hardware; might become doable on a KVM, but it still wont be easy to attack. Anyway, its easy to deal with - since xdr_encode_hyper() is just a call of put_unaligned_be64(), we can put that under ->d_lock and be done with that.