CVE-2025-71090

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel’s Network File System daemon (nfsd) contains a flaw in the nfsd4 add rdaccess to wrdeleg() function. This function improperly manages references to nfsd file objects, leading to a reference leak. Specifically, the function can overwrite existing file pointers without releasing the original reference, and may fail to release references when read access exists. This can result in open conflicts and, ultimately, a bug during server shutdown due to uncleaned nfsd file objects in the cache. The issue occurs because the function unconditionally overwrites fp->fi fds[O RDONLY] with a new nfsd file pointer, potentially orphaning the previous reference. Additionally, the same nfsd file pointer is stored in both fp->fi fds[O RDONLY] and fp->fi rdeleg file with only a single reference, which can prevent the release of the file reference when put deleg file() is called.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.