CVE-2025-39720

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix refcount leak causing resource not released

When ksmbd_conn_releasing(opinfo->conn) returns true,the refcount was not decremented properly, causing a refcount leak that prevents the count from reaching zero and the memory from being released.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < a1d2bab4d53368a526c97aba92671dd71814f95aaffected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 36e010bb865fbaa1202fe9bcce3fd486d6db7606affected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 9a7abce6e8c0e2145b346a6d4abf0d9655e9b0e8affected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 89bb430f621124af39bb31763c4a8b504c9651e2affected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux6.6.103 <= 6.6.*unaffected
LinuxLinux6.12.44 <= 6.12.*unaffected
LinuxLinux6.16.4 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

References