Acknowledged
Created: Dec 16, 2025
Updated: Dec 18, 2025
Found In Version: 10.25.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 25
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]nfs4_setup_readdir(): insufficient locking for ->d_parent->d_inode dereferencing[EOL][EOL]Theoretically it's an oopsable race, but I don't believe one can manage[EOL]to hit it on real hardware; might become doable on a KVM, but it still[EOL]won't be easy to attack.[EOL][EOL]Anyway, it's easy to deal with - since xdr_encode_hyper() is just a call of[EOL]put_unaligned_be64(), we can put that under ->d_lock and be done with that.
