-

CVE-2026-23038

pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node()

In the Linux kernel, the following vulnerability has been resolved:

pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node()

In nfs4_ff_alloc_deviceid_node(), if the allocation for ds_versions fails,
the function jumps to the out_scratch label without freeing the already
allocated dsaddrs list, leading to a memory leak.

Fix this by jumping to the out_err_drain_dsaddrs label, which properly
frees the dsaddrs list before cleaning up other resources.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
HerstellerSiemens
Produkt RUGGEDCOM RST2428P
Default Statusunknown
Version 0
Version < V4.0
Status affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.22% 0.125
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/869862056e100973e76ce9f5f1b01837771b7722
https://git.kernel.org/stable/c/86da7efd12295a7e2b4abde5e5984c821edd938f
https://git.kernel.org/stable/c/ed5d3f2f6885eb99f729e6ffd946e3aa058bd3eb
https://git.kernel.org/stable/c/0c728083654f0066f5e10a1d2b0bd0907af19a58
https://git.kernel.org/stable/c/27c90d8ed81e7a289c9fe41b5e31d8bb609a3385
https://git.kernel.org/stable/c/34b9dd179818ff7af2b36410985fd8166573c62d
https://git.kernel.org/stable/c/e2dde5dafb80f1af4028ed10ad255f42af71c784
https://cert-portal.siemens.com/productcert/html/ssa-253495.html