CVE-2022-50401

CVE-2022-50401 is a Linux kernel vulnerability fixed in NFSv4.1 path: a double svc_xprt_put on rpc_create failure in nfsd leads to refcount underflow and use-after-free in the kernel. Public advisories (Unity Linux, EulerOS, Astra Linux, SUSE) report the issue as resolved by kernel updates; the e...

CVE-2022-50401

In the Linux kernel, the following vulnerability has been resolved: nfsd: under NFSv4.1, fix double svcxprtput on rpccreate failure On error situation clp-clcbconn.cbxprt should not be given a reference to the xprt otherwise both client cleanup and the error handling path of the caller call to pu...

CVE-2022-50401 nfsd: under NFSv4.1, fix double svc_xprt_put on rpc_create failure

In the Linux kernel, the following vulnerability has been resolved: nfsd: under NFSv4.1, fix double svcxprtput on rpccreate failure On error situation clp-clcbconn.cbxprt should not be given a reference to the xprt otherwise both client cleanup and the error handling path of the caller call to pu...

CVE-2025-23142

In the Linux kernel, the following vulnerability has been resolved: sctp: detect and prevent references to a freed transport in sendmsg sctpsendmsg re-uses associations and transports when possible by doing a lookup based on the socket endpoint and the message destination address, and then...