CVE-2023-53241
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-53241
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53241.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-53241
- Downstream
- Published
- 2025-09-15T15:15:51Z
- Modified
- 2025-09-15T20:01:25Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
nfsd: call oprelease, even when opfunc returns an error
For ops with "trivial" replies, nfsd4encodeoperation will shortcut most of the encoding work and skip to just marshalling up the status. One of the things it skips is calling op_release. This could cause a memory leak in the layoutget codepath if there is an error at an inopportune time.
Have the compound processing engine always call oprelease, even when opfunc sets an error in op->status. With this change, we also need nfsd4blockgetdeviceinfoscsi to set the gddevice pointer to NULL on error to avoid a double free.
- References
-
- https://git.kernel.org/stable/c/15a8b55dbb1ba154d82627547c5761cac884d810
- https://git.kernel.org/stable/c/3d0dcada384af22dec764c8374a2997870ec86ae
- https://git.kernel.org/stable/c/65a33135e91e6dd661ecdf1194b9d90c49ae3570
- https://git.kernel.org/stable/c/b11d8162c24af4a351d21e2c804d25ca493305e3
- https://git.kernel.org/stable/c/b623a8e5d38a69a3ef8644acb1030dd7c7bc28b3