SB2025091943 - Memory leak in Linux kernel nfsd
Published: September 19, 2025 Updated: September 22, 2025
Security Bulletin ID
SB2025091943
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2023-53381)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the nfsd4_copy() function in fs/nfsd/nfs4proc.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/2da50149981d05955e51c28e982e9ac29bd73417
- https://git.kernel.org/stable/c/34e8f9ec4c9ac235f917747b23a200a5e0ec857b
- https://git.kernel.org/stable/c/6c3c05402547aaca3edb23327b50f01a881831b9
- https://git.kernel.org/stable/c/80a15dc4a0214b55ca42675bb0bb2a8d857eb1d0
- https://git.kernel.org/stable/c/9f0df37520a27ad99eaacf38418b3d2bb5023105
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.16