CVE-2023-54276

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s Network File System daemon (nfsd) related to the initialization of per-CPU reply cache statistics counters. A previous commit moved the initialization of the reply cache, but did not properly account for the statistics counters, potentially leading to a NULL pointer dereference when accessing /proc/fs/nfsd/reply cache stats before nfsd is fully started. This issue is user-triggerable under specific conditions, including non-x86 64 architectures, a mounted /proc/fs/nfsd filesystem, and nfsd not being started in the namespace. On x86 64 architectures, accessing the counters may not immediately cause an error due to the structure of fixed per-CPU data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-54276

RHSA-2023:6583

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

Red Hat

CVE-2023-54276

Related Identifiers

Affected Products

References · 1460