Linux Kernel RCU Usage Vulnerability in NVMe Multipath Driver
CVE-2025-38397
Currently unrated
What is CVE-2025-38397?
A reported issue within the Linux kernel NVMe multipath driver indicates a problematic use of RCU, which can lead to system instability during operations with NVMe over TCP. This is evidenced by warnings that arise such as 'suspicious RCU usage' during certain kernel tasks, including the creation of I/O queues. If left unaddressed, this could potentially result in undefined behavior and impact the system's performance. A fix is under development to resolve the identified RCU misuse and improve the reliability of multipath configurations.
Affected Version(s)
Linux 4dbd2b2ebe4cc5f101881e2c091a70ccd38db7ee
Linux 4dbd2b2ebe4cc5f101881e2c091a70ccd38db7ee
Linux 6.15