A recursive reference counting flaw in the Linux kernel NVMe-over-TCP implementation creates a risk of system deadlock.

The vulnerability exists in the nvmet_ctrl_free function, where recursive workqueue flushing can occur during the controller release process. This is a local denial-of-service vulnerability requiring interaction with the NVMe target subsystem.

With a CVSS score of 7.5, this high-severity vulnerability threatens the stability of storage infrastructure. Exploitation could lead to persistent kernel deadlocks, resulting in significant service downtime and loss of access to storage resources for dependent applications.

Immediate Action: Update the Linux kernel to a version containing the fix for the nvmet recursive flush issue.

Proactive Monitoring: Review system logs for kernel-level stalls or hang conditions specifically related to NVMe-over-TCP controller operations.

Compensating Controls: In high-availability environments, ensure that storage failover mechanisms are tested and functional to mitigate the impact of potential kernel panics.

Public Exploit Available: false

This vulnerability represents a significant stability risk for systems utilizing NVMe-over-TCP. Organizations should integrate the relevant kernel updates into their maintenance cycle immediately to prevent potential service interruptions caused by kernel-level deadlocks.