FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Deadlock in the NFS server

Affected packages
10.0 <= FreeBSD-kernel < 10.0_1
9.2 <= FreeBSD-kernel < 9.2_4
9.1 <= FreeBSD-kernel < 9.1_11
8.4 <= FreeBSD-kernel < 8.4_8
8.3 <= FreeBSD-kernel < 8.3_15

Details

VuXML ID 6a384960-6007-11e6-a6c3-14dae9d210b8
Discovery 2014-04-08
Entry 2016-08-11

Problem Description:

The kernel holds a lock over the source directory vnode while trying to convert the target directory file handle to a vnode, which needs to be returned with the lock held, too. This order may be in violation of normal lock order, which in conjunction with other threads that grab locks in the right order, constitutes a deadlock condition because no thread can proceed.

Impact:

An attacker on a trusted client could cause the NFS server become deadlocked, resulting in a denial of service.

References

CVE Name CVE-2014-1453
FreeBSD Advisory SA-14:05.nfsserver