In the Linux kernel, the following vulnerability has been resolved:
devlink: fix netns refcount leak in devlinknlcmd_reload()
While preparing my patch series adding netns refcount tracking, I spotted bugs in devlinknlcmd_reload()
Some error paths forgot to release a refcount on a netns.
To fix this, we can reduce the scope of getnet()/putnet() section around the call to devlink_reload().