CVE-2025-38492: 
Linux Kernel vulnerability analysis and mitigation

A race condition vulnerability was discovered in the Linux kernel's netfs subsystem, identified as CVE-2025-38492. The issue occurs between cache write completion and ALL_QUEUED being set in the netfslib when processing subrequests. The vulnerability was disclosed on July 28, 2025, affecting the Linux kernel's netfs component (NVD).

The vulnerability stems from a race condition in the netfslib's subrequest handling mechanism. When netfslib issues subrequests, they begin processing immediately and may complete before reaching the end of the issuing function where NETFSRREQALLQUEUED is set. While this isn't problematic for synchronous requests, asynchronous requests can experience a race condition if the app thread sets ALLQUEUED after the last subrequest terminates. This scenario is particularly prevalent in copy2cache code used by Ceph, where an asynchronous write request is spawned to copy data to the cache during a read request's collection routine (NVD).

If exploited, this vulnerability can result in hanging requests when all write subrequests complete before the ALL_QUEUED flag is set, preventing further events from occurring and leaving the request in a perpetual waiting state. This particularly affects systems using the copy2cache functionality, such as those running Ceph storage systems (NVD).

The vulnerability has been patched by implementing a fix that queues the collector after setting ALLQUEUED. Additionally, tracepoints have been added to cross-reference requests in copy-to-request operations and to indicate the setting of ALLQUEUED in the netfs_rreq tracepoint (NVD).