CVE-2025-40286

Summary

In the Linux kernel, the following vulnerability has been resolved:

smb/server: fix possible memory leak in smb2_read()

Memory leak occurs when ksmbd_vfs_read() fails. Fix this by adding the missing kvfree().

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < 0797c6cf3b857cc229ab2bc69552938dcd738d78affected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < 63d8706a2c09a0c29b8b0e8a44bc7a1339685de9affected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < f1305587731886da37a214cda812ade246c653b0affected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < bfda5422a16651d0bf864ec468b1c216e1b10d91affected
LinuxLinuxe2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 < 6fced056d2cc8d01b326e6fcfabaacb9850b71a4affected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux6.1.159 <= 6.1.*unaffected
LinuxLinux6.6.117 <= 6.6.*unaffected
LinuxLinux6.12.59 <= 6.12.*unaffected
LinuxLinux6.17.9 <= 6.17.*unaffected
LinuxLinux6.18 <= *unaffected

Weaknesses

References