{"id":"CVE-2026-57918","details":"libnfs through 6.0.2 before 935b8db has an xid integer underflow in READ_IOVEC in rpc_read_from_socket in lib/socket.c during a connection to a crafted NFS server, when the expected pdu size exceeds the absolute pdu size from the xid/record-marker.","modified":"2026-07-11T09:29:27.192272484Z","published":"2026-06-26T10:54:58.162Z","related":["openSUSE-SU-2026:11246-1"],"database_specific":{"cna_assigner":"mitre","cwe_ids":["CWE-191"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/57xxx/CVE-2026-57918.json","unresolved_ranges":[{"source":"AFFECTED_FIELD","extracted_events":[{"fixed":"935b8db712b3c6649bc57ddc276526c4a31680de"}]},{"source":"DESCRIPTION","extracted_events":[{"fixed":"935b8db"}]}]},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/57xxx/CVE-2026-57918.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-57918"},{"type":"FIX","url":"https://github.com/sahlberg/libnfs/commit/935b8db712b3c6649bc57ddc276526c4a31680de"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/sahlberg/libnfs","events":[{"introduced":"0"},{"fixed":"18c5c73ee88bb7dc8da0d55dc95164bb77e49dc6"},{"fixed":"935b8db712b3c6649bc57ddc276526c4a31680de"}],"database_specific":{"source":["DESCRIPTION","REFERENCES"],"extracted_events":[{"introduced":"0"},{"fixed":"6.0.2"}]}}],"versions":["libnfs-6.0.2","libnfs-6.0.1","libnfs-6.0.0","libnfs-5.0.3","libnfs-5.0.0","libnfs-5.0.2","libnfs-5.0.1","libnfs-4.0.0","libnfs-3.0.0","libnfs-2.0.0","libnfs-1.11.0","libnfs-1.10.0","libnfs-1.9.8","libnfs-1.9.7","libnfs-1.9.6","libnfs-1.9.5","libnfs-1.9.4","libnfs-1.9.3","libnfs-1.9.2","libnfs-1.9.0","libnfs-1.8.0","libnfs-1.7.0","libnfs-1.6.0","libnfs-1.5.0","libnfs-1.4.0","libnfs-1.3.0","libnfs-1.2.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-57918.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L"}]}