Description
In the Linux kernel, the following vulnerability has been resolved:

nfsd: fix nfs4_file refcount leak in nfsd_get_dir_deleg()

Claude pointed out that there is a nfs4_file refcount leak in
nfsd_get_dir_deleg(). Ensure that the reference to "fp" is released
before returning.
Published: 2026-05-06
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

In the Linux kernel, a reference count leak in the nfsd_get_dir_deleg function allows memory to be unintentionally retained. This leak can cause kernel memory usage to grow over time, potentially exhausting system resources and leading to a denial‑of‑service condition for users of the NFS service. The vulnerability maps to CWE‑911, Incorrect Resource Management.

Affected Systems

The flaw exists in the Linux kernel itself and therefore affects all installations running affected kernel versions. Specific version details are not provided, so any machine using a kernel build that includes the unpatched nfsd code is vulnerable. The only vendor listed is Linux and the product is the Linux kernel.

Risk and Exploitability

EPSS score is <1% and the vulnerability is not listed in CISA’s KEV. The CVSS score of 5.5 indicates a moderate severity. While the exploitation probability is unknown, the leak can cause kernel memory usage to grow, potentially leading to a denial‑of‑service. Based on the description, it is inferred that the likely attack vector involves an adversary interacting with the NFS daemon, for example by issuing repeated delegation requests, to drive the leak, especially on servers exposed to unauthenticated NFS clients. The severity of the impact warrants prompt action.

Generated by OpenCVE AI on May 12, 2026 at 00:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Linux kernel to a version that includes the nfsd_get_dir_deleg fix
  • Restrict access to the NFS daemon or limit delegation operations, for example by firewall rules or NFS configuration
  • Monitor kernel memory consumption for abnormal growth patterns to detect ongoing exploitation

Generated by OpenCVE AI on May 12, 2026 at 00:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 11 May 2026 23:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-401

Mon, 11 May 2026 20:45:00 +0000

Type Values Removed Values Added
Weaknesses NVD-CWE-Other
Metrics cvssV3_1

{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

Thu, 07 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-911
References
Metrics threat_severity

None

 cvssV3_1

{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}

threat_severity

Moderate

Wed, 06 May 2026 14:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-401

Wed, 06 May 2026 12:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfs4_file refcount leak in nfsd_get_dir_deleg() Claude pointed out that there is a nfs4_file refcount leak in nfsd_get_dir_deleg(). Ensure that the reference to "fp" is released before returning.
Title nfsd: fix nfs4_file refcount leak in nfsd_get_dir_deleg()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:19:38.671Z

Reserved: 2026-05-01T14:12:55.992Z

Link: CVE-2026-43193

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-06T12:16:38.197

Modified: 2026-05-11T20:36:27.623

Link: CVE-2026-43193

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43193 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-12T00:30:04Z

Weaknesses