CVE-2023-54258

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential oops in cifsoplockbreak With deferred close we can have closes that race with lease breaks, and so with the current checks for whether to send the lease response, oplockresponse, this can mean that an unmount...

CVE-2022-50853

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a credential leak in nfs4discovertrunking...

CVE-2023-54280 cifs: fix potential race when tree connecting ipc

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential race when tree connecting ipc Protect access of TCPServerInfo::hostname when building the ipc tree name as it might get freed in cifsd thread and thus causing an use-after-free bug in treeconnectdfstarget. Als...

CVE-2023-54276 nfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net

In the Linux kernel, the following vulnerability has been resolved: nfsd: move init of percpu replycachestats counters back to nfsdinitnet Commit f5f9d4a314da "nfsd: move reply cache initialization into nfsd startup" moved the initialization of the reply cache into nfsd startup, but didn't accoun...

CVE-2022-50861 NFSD: Finish converting the NFSv2 GETACL result encoder

In the Linux kernel, the following vulnerability has been resolved: NFSD: Finish converting the NFSv2 GETACL result encoder The xdrstream conversion inadvertently left some code that set the pagelen of the send buffer. The XDR stream encoders should handle this automatically now. This oversight...

CVE-2022-50861 NFSD: Finish converting the NFSv2 GETACL result encoder

In the Linux kernel, the following vulnerability has been resolved: NFSD: Finish converting the NFSv2 GETACL result encoder The xdrstream conversion inadvertently left some code that set the pagelen of the send buffer. The XDR stream encoders should handle this automatically now. This oversight...

CVE-2022-50853

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a credential leak in nfs4discovertrunking...

CVE-2022-50853

CVE-2022-50853 affects the Linux kernel, describing a credential leak in NFSv4 during _nfs4_discover_trunking(). The provided sources note that the vulnerability has been resolved by a kernel fix. No exploit details or affected versions are specified in the documents; remediation is the kernel pa...

CVE-2022-50853 NFSv4: Fix a credential leak in _nfs4_discover_trunking()

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a credential leak in nfs4discovertrunking...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a credential leak in the nfs4discovertrunking function in the NFSv4 subsystem...

PT-2025-53979

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel's Network File System Daemon NFSD related to the NFSv2 GETACL result encoder. A conversion oversight within the xdr stream encoders resulted in the...

PT-2025-53971

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A credential leak exists in the nfs4 discover trunking function within the NFSv4 implementation of the Linux kernel. This issue could potentially expose sensitive credentials...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992492)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992492 advisory. In the Linux kernel, the following vulnerability has been resolved: NFSv4/pnfs: Fix a use-after-free bug in open If someone cancels the open RPC call, then we must n...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992211)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992211 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: Fix warning and UAF when destroy the MR list If the MR allocate failed, the MR recovery wor...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992244)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992244 advisory. In the Linux kernel, the following vulnerability has been resolved: NFS: Fix an Oops in nfsdautomount When mounting from a NFSv4 referral, path-dentry can end up bei...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992477)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992477 advisory. In the Linux kernel, the following vulnerability has been resolved: nfsd: put dlstid if fail to queue dlrecall Before calling nfsd4runcb to queue dlrecall to the...

CVE-2023-53990

In the Linux kernel, the following vulnerability has been resolved: SMB3: Add missing locks to protect deferred close file list cifsdeldeferredclose function has a critical section which modifies the deferred close file list. We must acquire deferredlock before calling cifsdeldeferredclose functi...

NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid

...

nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails.

...

CVE-2025-68349

In the Linux kernel, the following vulnerability has been resolved: NFSv4/pNFS: Clear NFSINOLAYOUTCOMMIT in pnfsmarklayoutstateidinvalid Fixes a crash when layout is null during this call stack: writeinode - nfs4writeinode - pnfslayoutcommitinode pnfssetlayoutcommit relies on the lseg refcount to...