CVE-2023-53606

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel has a flaw related to the handling of nfsd file reference counts within the Network File System (NFS) copy codepath. Specifically, there is a potential for reference count leaks when copying files. The issue arises from the existence of two different structures for nfsd4 copy, one embedded and one dynamically allocated. If the kthread create function fails during the copy process, references to the source and destination nfsd files are leaked. The cleanup process for asynchronous copies is complex, involving multiple references that are not always properly managed. The recommended change involves ensuring that nfsd file references for the embedded copy structure are cleaned up before nfsd4 copy returns, reworking the cleanup async copy function to handle both intra and inter copies, and eliminating the nfsd4 cleanup intra ssc function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.