Kinglong Mee

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A vulnerability in the Linux kernel has been resolved. The issue occurs when a rdma server returns a fault format reply, and the nfs v3 client treats it as a bcall when the bc service does not exist. This can lead to a NULL pointer dereference, causing a kernel bug. The `rpcrdma bc receive call` function is involved in this issue, and a debug message is printed when the callback XID is received. The vulnerability can cause a kernel crash, as indicated by the BUG message and the call trace. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.11.1 **Description** The issue allows local users to cause a denial of service by leveraging improper channel callback shutdown when unmounting an NFSv4 filesystem. This is due to a "module reference and kernel daemon" leak in the NFSv4 implementation. **Recommendations** For versions prior to 4.11.1, update to version 4.11.1 or later to resolve the issue.