Vulnerability in Linux
CVE-2025-40320
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential cfid UAF in smb2_query_info_compound When smb2_query_info_compound() retries, a previously allocated cfid may have been freed in the first att…
EPSS: 0.002 (5.2th percentile) — read the EPSS interpretation.
Affected products
- Linux — versions 433042a91f9373241307725b52de573933ffedbf, 6.17.8, 6.6.117