Name of the Vulnerable Software and Affected Versions orangefs versions prior to v6.0.16

Description The issue is related to a kmemleak in the orangefs kernel debug init() and orangefs client debug init() functions. The actual impact and attack plausibility have not yet been proven.

Recommendations For versions prior to v6.0.16, update to Linux Kernel version v6.0.16 or later to resolve the issue. As a temporary workaround, consider disabling the debug initialization functions until a patch is available.