The vulnerability CVE-2026-57918 in libnfs (up to version 6.0.2 before commit f0b109d) is an integer underflow (CWE-191) in the READ_IOVEC function of rpc_read_from_socket (lib/socket.c). It is triggered during a connection to a maliciously crafted NFS server when the expected PDU size is larger than the absolute PDU size indicated by the xid/record-marker, leading to an integer underflow condition. This can potentially impact confidentiality, integrity, and availability with high severity as per the CVSS 3.1 vector AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L.

Successful exploitation of this integer underflow could lead to high impact on confidentiality and integrity, and a low impact on availability. The vulnerability could allow an attacker controlling an NFS server to cause unexpected behavior in the client, potentially leading to data compromise or corruption. However, exploitation requires user interaction (UI:R) and high attack complexity (AC:H).

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or patch links are currently available. Users should monitor the vendor's announcements for updates and apply any forthcoming patches promptly. Until a fix is available, avoid connecting to untrusted or malicious NFS servers to reduce risk.