CVE-2023-53381

MEDIUM

Linux kernel - Use After Free

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: NFSD: fix leaked reference count of nfsd4_ssc_umount_item The reference count of nfsd4_ssc_umount_item is not decremented on error conditions. This prevents the laundromat from unmounting the vfsmount of the source file. This patch decrements the reference count of nfsd4_ssc_umount_item on error.

References (5)

[Patch] https://git.kernel.org/stable/c/2da50149981d05955e51c28e982e9ac29bd73417

[Patch] https://git.kernel.org/stable/c/34e8f9ec4c9ac235f917747b23a200a5e0ec857b

[Patch] https://git.kernel.org/stable/c/6c3c05402547aaca3edb23327b50f01a881831b9

[Patch] https://git.kernel.org/stable/c/80a15dc4a0214b55ca42675bb0bb2a8d857eb1d0

[Patch] https://git.kernel.org/stable/c/9f0df37520a27ad99eaacf38418b3d2bb5023105

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

Status published

Affected Products (1)

linux/linux_kernel < 5.15.154

Timeline

Published Sep 18, 2025

Tracked Since Feb 18, 2026