Refcount Leak Vulnerability in Linux Kernel NFS Services
CVE-2025-40212

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 24 November 2025

What is CVE-2025-40212?

A vulnerability in the Linux kernel's NFSd (Network File System daemon) allows improper handling of filehandles, particularly from NFSv3 clients. When a v3 client interacts with a pseudo root filesystem and uses an invalid filehandle, an error is reported, but the system incorrectly retains a reference. This leads to a potential use-after-free condition when the reference is later dropped, risking a denial of service. The vulnerability can only be exploited under specific conditions, emphasizing the need for proper error handling in filesystem interactions.

Affected Version(s)

Linux ef7f6c4904d03ccd7478e1ac20ed75f79c4ac444

Linux ef7f6c4904d03ccd7478e1ac20ed75f79c4ac444 < 8a7348a9ed70bda1c1f51d3f1815bcbdf9f3b38c

References

https://git.kernel.org/stable/c/b6bc86ce3944b10b9fc181fc0...

https://git.kernel.org/stable/c/c83d7365cec5eb5ebeeee2a72...

https://git.kernel.org/stable/c/8a7348a9ed70bda1c1f51d3f1...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 24, 2025
Vulnerability Reserved
Apr 16, 2025

JSON