gfs2: Fix unlikely race in gdlm_put_lock
Summary
| CVE | CVE-2025-40242 |
|---|---|
| State | PUBLISHED |
| Assigner | Linux |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2025-12-04 16:16:17 UTC |
| Updated | 2026-04-11 13:16:35 UTC |
| Description | In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix unlikely race in gdlm_put_lock In gdlm_put_lock(), there is a small window of time in which the DFL_UNMOUNT flag has been set but the lockspace hasn't been released, yet. In that window, dlm may still call gdlm_ast() and gdlm_bast(). To prevent it from dereferencing freed glock objects, only free the glock if the lockspace has actually been released. |
Risk And Classification
EPSS: 0.000340000 probability, percentile 0.099190000 (date 2026-04-07)
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Linux | Linux | affected d1340f80f0b8066321b499a376780da00560e857 5fdc1474e678eea1700aa266c0b7c2c96f81dd0d git | Not specified |
| CNA | Linux | Linux | affected d1340f80f0b8066321b499a376780da00560e857 4913592a3358f6ec366b8346b733d5e2360b08e1 git | Not specified |
| CNA | Linux | Linux | affected d1340f80f0b8066321b499a376780da00560e857 279bde3bbb0ac0bad5c729dfa85983d75a5d7641 git | Not specified |
| CNA | Linux | Linux | affected d1340f80f0b8066321b499a376780da00560e857 64c61b4ac645222fa7b724cef616c1f862a72a40 git | Not specified |
| CNA | Linux | Linux | affected d1340f80f0b8066321b499a376780da00560e857 28c4d9bc0708956c1a736a9e49fee71b65deee81 git | Not specified |
| CNA | Linux | Linux | affected 6aa628c45875e7b8cca81ed9447a12a0e8f3504a git | Not specified |
| CNA | Linux | Linux | affected a97e75203733be0a4263a78fb7b29352be150c1c git | Not specified |
| CNA | Linux | Linux | affected 3554b46204e67333e1fb8be0e93936fb08267c80 git | Not specified |
| CNA | Linux | Linux | affected 5cff77b9827a956d076168b56775aad23bce87e4 git | Not specified |
| CNA | Linux | Linux | affected 8deedce385d220f90e435f534d71d27526273515 git | Not specified |
| CNA | Linux | Linux | affected 2225a5cd2fbc2ef0e0f78e585db3844f60416a39 git | Not specified |
| CNA | Linux | Linux | affected 02e838963fdaa6ce8570b5389aecdc6cf1fb40b0 git | Not specified |
| CNA | Linux | Linux | affected 01eb3106f43335fdc02111358dae80a5c3fd324d git | Not specified |
| CNA | Linux | Linux | affected 5.15 | Not specified |
| CNA | Linux | Linux | unaffected 5.15 semver | Not specified |
| CNA | Linux | Linux | unaffected 6.1.168 6.1.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.6.131 6.6.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.12.56 6.12.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.17.6 6.17.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.18 * original_commit_for_fix | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| git.kernel.org/stable/c/4913592a3358f6ec366b8346b733d5e2360b08e1 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/64c61b4ac645222fa7b724cef616c1f862a72a40 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/279bde3bbb0ac0bad5c729dfa85983d75a5d7641 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/28c4d9bc0708956c1a736a9e49fee71b65deee81 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/5fdc1474e678eea1700aa266c0b7c2c96f81dd0d | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.