CVE-2023-53381

Summary

In the Linux kernel, the following vulnerability has been resolved:

NFSD: fix leaked reference count of nfsd4_ssc_umount_item

The reference count of nfsd4_ssc_umount_item is not decremented on error conditions. This prevents the laundromat from unmounting the vfsmount of the source file.

This patch decrements the reference count of nfsd4_ssc_umount_item on error.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa4bc287943f5695209ff36bdc89f17b48d68fae7 < 2da50149981d05955e51c28e982e9ac29bd73417affected
LinuxLinuxf4e44b393389c77958f7c58bf4415032b4cda15b < 80a15dc4a0214b55ca42675bb0bb2a8d857eb1d0affected
LinuxLinuxf4e44b393389c77958f7c58bf4415032b4cda15b < 9f0df37520a27ad99eaacf38418b3d2bb5023105affected
LinuxLinuxf4e44b393389c77958f7c58bf4415032b4cda15b < 6c3c05402547aaca3edb23327b50f01a881831b9affected
LinuxLinuxf4e44b393389c77958f7c58bf4415032b4cda15b < 34e8f9ec4c9ac235f917747b23a200a5e0ec857baffected
LinuxLinux5.14affected
LinuxLinux0 < 5.14unaffected
LinuxLinux5.15.154 <= 5.15.*unaffected
LinuxLinux6.1.16 <= 6.1.*unaffected
LinuxLinux6.2.3 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References