CVE-2025-21795

MEDIUM EPSS 11.9%
Published Feb 27, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 27, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: NFSD: fix hang in nfsd4_shutdown_callback If nfs4_client is in courtesy state then there is no point to send the callback. This causes nfsd4_shutdown_callback to hang since cl_cb_inflight is not 0. This hang lasts about 15 minutes until TCP notifies NFSD that the connection was dropped. This patch modifies nfsd4_run_cb_work to skip the RPC call if nfs4_client is in courtesy state.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
11.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥5.10.220  –  <5.10.235
linuxlinux_kernel*≥5.15.154  –  <5.15.179
linuxlinux_kernel*≥5.19  –  <6.1.129
linuxlinux_kernel*≥6.2  –  <6.6.79
linuxlinux_kernel*≥6.7  –  <6.12.16
linuxlinux_kernel*≥6.13  –  <6.13.4
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any

References 11

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-082556.html
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-265688.html
  • git.kernel.org https://git.kernel.org/stable/c/036ac2778f7b28885814c6fbc07e156ad1624d03
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/23ad7797c74cd8f7f90617f1e59a8703e2b43908
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/38d345f612503b850c2973e5a879f88e441b34d7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/abed68027ea3ab893ac85cc46a00e2e64a324239
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cedfbb92cf97a6bff3d25633001d9c44442ee854
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e88d2451cd42e025465d6b51fd716a47b0b3800d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/efa8a261c575f816c7e79a87aeb3ef8a0bd6b221
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/036ac2778f7b28885814c6fbc07e156ad1624d03
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/23ad7797c74cd8f7f90617f1e59a8703e2b43908
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/38d345f612503b850c2973e5a879f88e441b34d7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/abed68027ea3ab893ac85cc46a00e2e64a324239
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cedfbb92cf97a6bff3d25633001d9c44442ee854
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e88d2451cd42e025465d6b51fd716a47b0b3800d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/efa8a261c575f816c7e79a87aeb3ef8a0bd6b221
    Patch