Lucene search
K

25 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: nfsd: Fixed the reference leak in nfsd4addrdaccesstowrdeleg. The nfsd4addrdaccesstowrdeleg function overwrites fp-fifdsORDONLY unconditionally with a newly acquired nfsdfile. However, if the client already has a SHAREACCESSREA...

5.5CVSS5.8AI score0.001EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: NFSD: Fixed a potential use-after-free in nfsdfileput The nfsdfileputnoref function can free the @nf object; therefore, do not dereference @nf immediately after returning from nfsdfileputnoref...

7.8CVSS6.4AI score0.00252EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.35 views

CVE-2026-43193 nfsd: fix nfs4_file refcount leak in nfsd_get_dir_deleg()

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfs4file refcount leak in nfsdgetdirdeleg Claude pointed out that there is a nfs4file refcount leak in nfsdgetdirdeleg. Ensure that the reference to "fp" is released before returning...

0.00112EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/15 5:22 p.m.6 views

CVE-2025-71090

A reference leak flaw was found in the Linux kernel's NFSv4 server nfsd. The nfsd4addrdaccesstowrdeleg function overwrites file pointers without releasing existing references, causing nfsdfile reference leaks. On server shutdown, these leaked references trigger a BUG in kmemcachedestroy as object...

5.5CVSS5.3AI score0.001EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/01/14 12:25 a.m.5 views

SUSE CVE-2025-71090

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsdfile reference leak in nfsd4addrdaccesstowrdeleg nfsd4addrdaccesstowrdeleg unconditionally overwrites fp-fifdsORDONLY with a newly acquired nfsdfile. However, if the client already has a SHAREACCESSREAD open from a...

5.5CVSS6.3AI score0.001EPSS
Exploits0References3
OSV
OSV
added 2026/01/13 3:34 p.m.7 views

CVE-2025-71090 nfsd: fix nfsd_file reference leak in nfsd4_add_rdaccess_to_wrdeleg()

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsdfile reference leak in nfsd4addrdaccesstowrdeleg nfsd4addrdaccesstowrdeleg unconditionally overwrites fp-fifdsORDONLY with a newly acquired nfsdfile. However, if the client already has a SHAREACCESSREAD open from a...

5.5CVSS6.2AI score0.001EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.3 views

PT-2026-2611

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s Network File System daemon nfsd contains a flaw in the nfsd4 add rdaccess to wrdeleg function. This function improperly manages references to nfsd file objects, leadin...

9.8CVSS5.8AI score0.93235EPSS
Exploits38References62
SUSE CVE
SUSE CVE
added 2025/08/19 11:23 p.m.4 views

SUSE CVE-2025-38567

In the Linux kernel, the following vulnerability has been resolved: nfsd: avoid ref leak in nfsdopenlocalfh If two calls to nfsdopenlocalfh race and both successfully call nfsdfileacquirelocal, they will both get an extra reference to the net to accompany the file reference stored in pnf. One of...

4.7CVSS6.2AI score0.00103EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/06/19 3:15 a.m.3 views

SUSE CVE-2025-38028

In the Linux kernel, the following vulnerability has been resolved: NFS/localio: Fix a race in nfslocalopenfh Once the clp-cluuid.lock has been dropped, another CPU could come in and free the struct nfsdfile that was just added. To prevent that from happening, take the RCU read lock before droppi...

4.7CVSS6.3AI score0.001EPSS
Exploits0References3
OSV
OSV
added 2025/06/18 9:28 a.m.3 views

CVE-2025-38028 NFS/localio: Fix a race in nfs_local_open_fh()

In the Linux kernel, the following vulnerability has been resolved: NFS/localio: Fix a race in nfslocalopenfh Once the clp-cluuid.lock has been dropped, another CPU could come in and free the struct nfsdfile that was just added. To prevent that from happening, take the RCU read lock before droppi...

4.7CVSS6.3AI score0.001EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.7 views

The vulnerability of the nfsd_file_put() function in the filecache.c component of the Linux kernel allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the nfsdfileput function in the filecache.c component of the Linux kernel lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...

7.8CVSS6.3AI score0.00252EPSS
Exploits0References11Affected Software3
Vulnrichment
Vulnrichment
added 2025/02/26 2:11 a.m.10 views

CVE-2022-49362 NFSD: Fix potential use-after-free in nfsd_file_put()

In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix potential use-after-free in nfsdfileput nfsdfileputnoref can free @nf, so don't dereference @nf immediately upon return from nfsdfileputnoref...

7.5AI score0.00252EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/02/26 2:11 a.m.8 views

CVE-2022-49362

In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix potential use-after-free in nfsdfileput nfsdfileputnoref can free @nf, so don't dereference @nf immediately upon return from nfsdfileputnoref...

7.8CVSS5.4AI score0.00252EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/12/30 3:48 a.m.2 views

SUSE CVE-2024-56743

In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...

4.5CVSS6.6AI score0.00133EPSS
Exploits0References3
OSV
OSV
added 2024/12/29 12:15 p.m.2 views

UBUNTU-CVE-2024-56743

In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...

5.5CVSS6.5AI score0.00133EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/12/29 11:30 a.m.3 views

CVE-2024-56743 nfs_common: must not hold RCU while calling nfsd_file_put_local

In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...

6.2AI score0.00133EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/29 11:30 a.m.19 views

CVE-2024-56743 nfs_common: must not hold RCU while calling nfsd_file_put_local

In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...

0.00133EPSS
Exploits0References2
OSV
OSV
added 2024/12/29 11:30 a.m.3 views

CVE-2024-56743 nfs_common: must not hold RCU while calling nfsd_file_put_local

In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...

5.5CVSS6.5AI score0.00133EPSS
Exploits0References5
OSV
OSV
added 2024/11/05 6:15 p.m.2 views

DEBIAN-CVE-2024-50121

In the Linux kernel, the following vulnerability has been resolved: nfsd: cancel nfsdshrinkerwork using sync mode in nfs4stateshutdownnet In the normal case, when we excute echo 0 /proc/fs/nfsd/threads, the function nfs4statedestroynet in nfs4stateshutdownnet will release all resources related to...

7.8CVSS5.9AI score0.00233EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.3 views

kernel: nfsd: clean up potential nfsd_file refcount leaks in COPY codepath

A reference leak flaw was found in the Linux kernel's NFS server implementation in the file copy operation handling. A local user can trigger this issue when asynchronous copy operations fail to create worker threads, causing nfsdfile references held by the embedded copy structure to leak. This...

5.5CVSS7.1AI score0.00135EPSS
Exploits0References5
Rows per page
Query Builder