CVE-2025-39912

MEDIUM 5.5

nfs/localio: restore creds before releasing pageio data

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

2th

In the Linux kernel, the following vulnerability has been resolved: nfs/localio: restore creds before releasing pageio data Otherwise if the nfsd filecache code releases the nfsd_file immediately, it can trigger the BUG_ON(cred == current->cred) in __put_cred() when it puts the nfsd_file->nf_file->f-cred.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Oct 1, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

b9f5dd57f4a52990963eeb1f1b58d00f717ece69 < 57c1bb02b4fc8eec6eb01736e7fad26dffacf18c b9f5dd57f4a52990963eeb1f1b58d00f717ece69 < c250be1d75bf80dc5ab46f0b434b746c1868a1ea b9f5dd57f4a52990963eeb1f1b58d00f717ece69 < 992203a1fba51b025c60ec0c8b0d9223343dea95

Linux / Linux

6.12

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/57c1bb02b4fc8eec6eb01736e7fad26dffacf18c git.kernel.org: https://git.kernel.org/stable/c/c250be1d75bf80dc5ab46f0b434b746c1868a1ea git.kernel.org: https://git.kernel.org/stable/c/992203a1fba51b025c60ec0c8b0d9223343dea95