CVE-2014-1453

Name of the Vulnerable Software and Affected Versions FreeBSD versions 8.3 through 10.0

Description The issue concerns the NFS server in FreeBSD, where it fails to acquire locks in the proper order when converting a directory file handle to a vnode. This allows remote authenticated users to cause a denial of service, specifically a deadlock, through certain vectors involving a thread that uses the correct locking order.

Recommendations For versions 8.3 through 10.0, consider applying a patch or fix that corrects the locking order issue in the NFS server to prevent deadlocks.