25 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: nfsd: Fixed the reference leak in nfsd4addrdaccesstowrdeleg. The nfsd4addrdaccesstowrdeleg function overwrites fp-fifdsORDONLY unconditionally with a newly acquired nfsdfile. However, if the client already has a SHAREACCESSREA...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: NFSD: Fixed a potential use-after-free in nfsdfileput The nfsdfileputnoref function can free the @nf object; therefore, do not dereference @nf immediately after returning from nfsdfileputnoref...
CVE-2026-43193 nfsd: fix nfs4_file refcount leak in nfsd_get_dir_deleg()
In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfs4file refcount leak in nfsdgetdirdeleg Claude pointed out that there is a nfs4file refcount leak in nfsdgetdirdeleg. Ensure that the reference to "fp" is released before returning...
CVE-2025-71090
A reference leak flaw was found in the Linux kernel's NFSv4 server nfsd. The nfsd4addrdaccesstowrdeleg function overwrites file pointers without releasing existing references, causing nfsdfile reference leaks. On server shutdown, these leaked references trigger a BUG in kmemcachedestroy as object...
SUSE CVE-2025-71090
In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsdfile reference leak in nfsd4addrdaccesstowrdeleg nfsd4addrdaccesstowrdeleg unconditionally overwrites fp-fifdsORDONLY with a newly acquired nfsdfile. However, if the client already has a SHAREACCESSREAD open from a...
CVE-2025-71090 nfsd: fix nfsd_file reference leak in nfsd4_add_rdaccess_to_wrdeleg()
In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsdfile reference leak in nfsd4addrdaccesstowrdeleg nfsd4addrdaccesstowrdeleg unconditionally overwrites fp-fifdsORDONLY with a newly acquired nfsdfile. However, if the client already has a SHAREACCESSREAD open from a...
PT-2026-2611
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s Network File System daemon nfsd contains a flaw in the nfsd4 add rdaccess to wrdeleg function. This function improperly manages references to nfsd file objects, leadin...
SUSE CVE-2025-38567
In the Linux kernel, the following vulnerability has been resolved: nfsd: avoid ref leak in nfsdopenlocalfh If two calls to nfsdopenlocalfh race and both successfully call nfsdfileacquirelocal, they will both get an extra reference to the net to accompany the file reference stored in pnf. One of...
SUSE CVE-2025-38028
In the Linux kernel, the following vulnerability has been resolved: NFS/localio: Fix a race in nfslocalopenfh Once the clp-cluuid.lock has been dropped, another CPU could come in and free the struct nfsdfile that was just added. To prevent that from happening, take the RCU read lock before droppi...
CVE-2025-38028 NFS/localio: Fix a race in nfs_local_open_fh()
In the Linux kernel, the following vulnerability has been resolved: NFS/localio: Fix a race in nfslocalopenfh Once the clp-cluuid.lock has been dropped, another CPU could come in and free the struct nfsdfile that was just added. To prevent that from happening, take the RCU read lock before droppi...
The vulnerability of the nfsd_file_put() function in the filecache.c component of the Linux kernel allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the nfsdfileput function in the filecache.c component of the Linux kernel lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...
CVE-2022-49362 NFSD: Fix potential use-after-free in nfsd_file_put()
In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix potential use-after-free in nfsdfileput nfsdfileputnoref can free @nf, so don't dereference @nf immediately upon return from nfsdfileputnoref...
CVE-2022-49362
In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix potential use-after-free in nfsdfileput nfsdfileputnoref can free @nf, so don't dereference @nf immediately upon return from nfsdfileputnoref...
SUSE CVE-2024-56743
In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...
UBUNTU-CVE-2024-56743
In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...
CVE-2024-56743 nfs_common: must not hold RCU while calling nfsd_file_put_local
In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...
CVE-2024-56743 nfs_common: must not hold RCU while calling nfsd_file_put_local
In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...
CVE-2024-56743 nfs_common: must not hold RCU while calling nfsd_file_put_local
In the Linux kernel, the following vulnerability has been resolved: nfscommon: must not hold RCU while calling nfsdfileputlocal Move holding the RCU from nfstonfsdfileputlocal to nfstonfsdnetput. It is the call to nfsto-nfsdservput that requires the RCU anyway the puts for nfsdfile and netns were...
DEBIAN-CVE-2024-50121
In the Linux kernel, the following vulnerability has been resolved: nfsd: cancel nfsdshrinkerwork using sync mode in nfs4stateshutdownnet In the normal case, when we excute echo 0 /proc/fs/nfsd/threads, the function nfs4statedestroynet in nfs4stateshutdownnet will release all resources related to...
kernel: nfsd: clean up potential nfsd_file refcount leaks in COPY codepath
A reference leak flaw was found in the Linux kernel's NFS server implementation in the file copy operation handling. A local user can trigger this issue when asynchronous copy operations fail to create worker threads, causing nfsdfile references held by the embedded copy structure to leak. This...