CVE-2025-38232

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version

Description: A race condition exists between nfsd registration and exports proc, which can cause a kernel OOPs. This issue is triggered by a race between the exportfs -r command and the mount -t nfsd none /proc/fs/nfsd command. The estimated number of potentially affected devices is not specified. Technical details about exploitation include the exports net open() function and the cache seq next rcu() function. The issue can be reproduced using a script that continuously runs the exportfs -r command and mounts and unmounts the nfsd filesystem.

Recommendations: For Linux kernel versions prior to the fixed version: update to a version that includes the fix for the NFSD race condition between nfsd registration and exports proc. As a temporary workaround, consider disabling the nfsd module until a patch is available. Restrict access to the /proc/fs/nfsd filesystem to minimize the risk of exploitation. Avoid using the exportfs -r command and the mount -t nfsd none /proc/fs/nfsd command simultaneously until the issue is resolved.