In the Linux kernel, the following vulnerability has been resolved:
pnfs/flexfiles: Fix memory leak in nfs4_ff_alloc_deviceid_node()
In nfs4_ff_alloc_deviceid_node(), if the allocation for ds_versions fails,
the function jumps to the out_scratch label without freeing the already
allocated dsaddrs list, leading to a memory leak.
Fix this by jumping to the out_err_drain_dsaddrs label, which properly
frees the dsaddrs list before cleaning up other resources.
| Score | Percentile |
|---|---|
| 0.02% | 6.90% |
No CVSS scores in this advisory.
| Type | Value |
|---|---|
| GHSA | GHSA-96c4-w7rm-2mx2 ↗ |
| CVE | CVE-2026-23038 ↗ |