Wiz
Vulnerability DatabaseCVE-2025-38567

CVE-2025-38567
Linux Ubuntu vulnerability analysis and mitigation

Overview

A reference leak vulnerability was discovered in the Linux kernel's NFS server implementation, specifically in the nfsd_open_local_fh() function. The vulnerability was assigned CVE-2025-38567 and was publicly disclosed on August 19, 2025 (NVD).

Technical details

The vulnerability occurs when two calls to nfsd_open_local_fh() race and both successfully call nfsd_file_acquire_local(). In this scenario, both calls obtain an extra reference to the net to accompany the file reference stored in *pnf. When one of them fails to store the file reference in *pnf using xchg(), it drops that reference but fails to drop the accompanying reference to the net. This creates a reference leak that prevents proper shutdown of the NFS server (NVD).

Impact

When exploited, this vulnerability causes the NFS server to hang during shutdown in nfsd_shutdown_net(), specifically while waiting for &nn->nfsd_net_free_done. This prevents proper system shutdown and could lead to resource exhaustion (NVD).

Mitigation and workarounds

The vulnerability has been patched by adding the missing nfsd_net_put() call to properly release the reference. The fix has been implemented in the Linux kernel codebase (NVD).

Additional resources

SourceThis report was generated using AI

Related Linux Ubuntu vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2026-21441HIGH8.9
  • PythonPython
  • barman
NoYesJan 07, 2026
CVE-2025-68766HIGH7.1
  • Linux DebianLinux Debian
  • linux-gcp-fips
NoYesJan 05, 2026
CVE-2025-68765MEDIUM5.5
  • Linux DebianLinux Debian
  • linux-lowlatency
NoYesJan 05, 2026
CVE-2025-68764MEDIUM5.5
  • Linux KernelLinux Kernel
  • linux-realtime
NoYesJan 05, 2026
CVE-2025-68763MEDIUM5.5
  • Linux DebianLinux Debian
  • linux-gcp
NoYesJan 05, 2026

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo