Race Condition Vulnerability in Linux Kernel nilfs2 Product by Linux Community
CVE-2025-21811

7.8HIGH

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
27 February 2025

What is CVE-2025-21811?

A race condition in the nilfs2 implementation of the Linux kernel may lead to unsafe memory access in the event of asynchronous operations. Specifically, when the file system transitions to a read-only state, the nilfs_lookup_dirty_data_buffers function is at risk of encountering buffers that have lost their protection status. This may occur if nilfs_clear_folio_dirty is invoked simultaneously, resulting in potential use-after-free vulnerabilities as buffers could be inadvertently freed. To mitigate this risk, improvements were made to the locking mechanisms within the related functions, ensuring that access to buffers remains safely synchronized.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 8c26c4e2694a163d525976e804d81cd955bbb40c

Linux 8c26c4e2694a163d525976e804d81cd955bbb40c < 72cf688d0ce7e642b12ddc9b2a42524737ec1b4a

Linux 8c26c4e2694a163d525976e804d81cd955bbb40c

References

https://git.kernel.org/stable/c/e1fc4a90a90ea8514246c4543...
https://git.kernel.org/stable/c/72cf688d0ce7e642b12ddc9b2...
https://git.kernel.org/stable/c/d8ff250e085a4c4cdda4ad1cd...

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.