CVE-2022-50861 NFSD: Finish converting the NFSv2 GETACL result encoder

In the Linux kernel, the following vulnerability has been resolved: NFSD: Finish converting the NFSv2 GETACL result encoder The xdrstream conversion inadvertently left some code that set the pagelen of the send buffer. The XDR stream encoders should handle this automatically now. This oversight...

PT-2025-53979

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel's Network File System Daemon NFSD related to the NFSv2 GETACL result encoder. A conversion oversight within the xdr stream encoders resulted in the...

CVE-2025-68382 Packetbeat Out-of-bounds Read

Out-of-bounds read CWE-125 allows an unauthenticated remote attacker to perform a buffer overflow CAPEC-100 via the NFS protocol dissector, leading to a denial-of-service DoS through a reliable process crash when handling truncated XDR-encoded RPC messages...

Linux Kernel <= 2.4.20 decode_fh Denial of Service Exploit

Exploit for linux platform in category dos / poc ========================================================== Linux Kernel Vulnerable code: fs/nfsd/nfs3xdr.c line 52-64 static inline u32 decodefhu32 p, struct svcfh fhp int size; fhinitfhp, NFS3FHSIZE; size = ntohlp++; if size NFS3FHSIZE return NULL...