J. Bruce Fields

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: The issue is related to a use-after-free error due to a delegation race in the nfsd component of the Linux kernel. A delegation break could arrive as soon as `vfs setlease` is called, and a callback is run immediately in `nfsd4 cb recall prepare`, adding the delegation to `del recall lru`. If `nfs4 set delegation` exits without hashing the delegation, it will be freed as soon as the callback is done with it, without being removed from `del recall lru`. Symptoms show up later as use-after-free or list corruption warnings, usually in the laundromat thread. The bug may have been present since the beginning, but it is suspected that a specific commit made it easier to hit. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernels versions 2.6.10 through 2.6.15 SUSE Linux Enterprise (affected versions not specified) **Description** The issue involves multiple vulnerabilities in certain packages of the SUSE Linux Enterprise operating system, which can lead to breaches of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited locally. Additionally, a memory leak in the VFS file lease handling in Linux kernels can cause a denial of service due to memory exhaustion through specific Samba activities. **Recommendations** For Linux kernels versions 2.6.10 through 2.6.15, consider updating to a newer version to mitigate the risk. For SUSE Linux Enterprise, at the moment, there is no information about a newer version that contains a fix for this vulnerability.