Name of the Vulnerable Software and Affected Versions:

Linux kernel (affected versions not specified)

Description:

A vulnerability in the Linux kernel has been resolved, related to the NFSv4 protocol. The issue occurred during referral lookup, where an uninitialized `nfs4 label` was freed, causing a crash. The problem was fixed by sending the already-allocated `fattr` along with `nfs4 fs locations` and dropping the `memcpy` of `fattr`. This fix resolves a crash that occurred when the `ls` command was executed.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.