CVE-2025-39929

MEDIUM EPSS 3.3%
Published Oct 4, 20258mo ago · Modified Jun 19, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Oct 4, 2025 8mo ago
Last Modified Jun 19, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path During tests of another unrelated patch I was able to trigger this error: Objects remaining on __kmem_cache_shutdown()

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
3.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥4.16  –  <6.1.154
linuxlinux_kernel*≥6.2  –  <6.6.108
linuxlinux_kernel*≥6.7  –  <6.12.49
linuxlinux_kernel*≥6.13  –  <6.16.9
linuxlinux_kernel6.17any
linuxlinux_kernel6.17any
linuxlinux_kernel6.17any
linuxlinux_kernel6.17any
linuxlinux_kernel6.17any
linuxlinux_kernel6.17any

References 8

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-082556.html
  • git.kernel.org https://git.kernel.org/stable/c/0991418bf98f191d0c320bd25245fcffa1998c7e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3d7c075c878ac844e33c43e506c2fa27ac7e9689
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5aa69aabcb275a8012265233c7694076ce1d9102
  • git.kernel.org https://git.kernel.org/stable/c/922338efaad63cfe30d459dfc59f9d69ff93ded4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/aa4cf7615328eae44f3b4bf5f4fde3fb390c27c6
  • git.kernel.org https://git.kernel.org/stable/c/daac51c7032036a0ca5f1aa419ad1b0471d1c6e0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e7b7a93879558e77d950f1ff9a6f3daa385b33df
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0991418bf98f191d0c320bd25245fcffa1998c7e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3d7c075c878ac844e33c43e506c2fa27ac7e9689
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/922338efaad63cfe30d459dfc59f9d69ff93ded4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/daac51c7032036a0ca5f1aa419ad1b0471d1c6e0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e7b7a93879558e77d950f1ff9a6f3daa385b33df
    Patch