Vulnerability in Linux

CVE-2025-40320

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential cfid UAF in smb2_query_info_compound When smb2_query_info_compound() retries, a previously allocated cfid may have been freed in the first att…

EPSS: 0.002 (5.2th percentile) — read the EPSS interpretation.

Affected products

  • Linux — versions 433042a91f9373241307725b52de573933ffedbf, 6.17.8, 6.6.117

References