CVE-2025-39912

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s nfs/localio functionality. Specifically, the issue involves improper credential handling when releasing pageio data, potentially triggering a bug in the put cred() function if the nfsd file is released immediately. This can occur when the nfsd filecache code releases the nfsd file, leading to a condition where the credential check fails (BUG ON(cred == current->cred)).

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.