cve 2025 40261

About this tag
CVE-2025-40261 is a Linux kernel vulnerability in the NVMe over Fibre Channel (nvme-fc) driver. The flaw involves an ordering bug where the I/O error work item (ioerr_work) could be cancelled before the controller's transport association is fully torn down, allowing a workqueue task to run against a freed controller object. This can lead to list corruption and kernel oopses, causing system instability or crashes under specific I/O error conditions. The fix ensures proper ordering by cancelling the work item only after the association is completely removed. This tag covers discussions about the vulnerability, its impact on Linux systems using NVMe-FC, and the patch addressing the race condition.
  1. Linux NVMe-FC CVE-2025-40261: Fix for I/O error workqueue race

    A subtle ordering bug in the Linux kernel's NVMe over Fibre Channel (nvme‑fc) driver has been assigned CVE‑2025‑40261 and fixed by a small but critical change: ensure the work item used to report I/O errors (->ioerr_work) is cancelled only after the controller's transport association is fully...