Wind River Support Network

HomeDefectsLIN1025-6980
Acknowledged

LIN1025-6980 : Security Advisory - linux - CVE-2025-68349

Created: Dec 25, 2025    Updated: Dec 27, 2025
Found In Version: 10.25.33.2
Severity: Standard
Applicable for: Wind River Linux LTS 25
Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid

Fixes a crash when layout is null during this call stack:

write_inode
    -> nfs4_write_inode
        -> pnfs_layoutcommit_inode

pnfs_set_layoutcommit relies on the lseg refcount to keep the layout
around. Need to clear NFS_INO_LAYOUTCOMMIT otherwise we might attempt
to reference a null layout.
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube