CVE-2026-43193
Description
In the Linux kernel, the following vulnerability has been resolved:
nfsd: fix nfs4_file refcount leak in nfsd_get_dir_deleg()
Claude pointed out that there is a nfs4_file refcount leak in nfsd_get_dir_deleg(). Ensure that the reference to "fp" is released before returning.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A refcount leak in the Linux kernel's NFS server when handling directory delegations can lead to memory exhaustion.
Vulnerability
In the Linux kernel's NFS server (nfsd), the function nfsd_get_dir_deleg() fails to release a reference to nfs4_file under certain conditions, causing a reference count leak [1][2]. This memory management bug prevents the kernel from properly freeing the file object.
Exploitation
An attacker with the ability to trigger directory delegation operations (e.g., by mounting an NFS export and performing specific file operations) can repeatedly cause the reference leak. No authentication is required beyond standard NFS access privileges to the export [1][2].
Impact
Each leaked reference consumes kernel memory that is never reclaimed. Over time, repeated exploitation can exhaust system memory, leading to denial of service (system hang or crash) or potentially other resource exhaustion issues [1][2].
Mitigation
The vulnerability is fixed in Linux kernel stable updates that backport the commit referenced in [1] and [2]. Administrators should apply the latest kernel updates from their distribution to prevent exploitation.
AI Insight generated on May 18, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.