CVE-2025-39720

🗓️ 05 Sep 2025 17:21:28Reported by LinuxType

ksmbd fix refcount leak when releasing connection; refcount not decremented, memory not released.

Reporter	Title	Published	Views	Family All 79
AstraLinux	Astra Linux - уязвимость в linux-5.10	3 May 202623:59	–	astralinux
CBLMariner	CVE-2025-39720 affecting package kernel for versions less than 6.6.104.2-1	1 Oct 202519:21	–	cbl_mariner
Circl	CVE-2025-39720	19 Mar 202600:00	–	circl
CNNVD	Linux kernel 安全漏洞	5 Sep 202500:00	–	cnnvd
Cvelist	CVE-2025-39720 ksmbd: fix refcount leak causing resource not released	5 Sep 202517:21	–	cvelist
Debian	[SECURITY] [DSA 6008-1] linux security update	22 Sep 202521:10	–	debian
Debian CVE	CVE-2025-39720	5 Sep 202517:21	–	debiancve
Tenable Nessus	Debian dsa-6008 : ata-modules-6.12.31-armmp-di - security update	22 Sep 202500:00	–	nessus
Tenable Nessus	Photon OS 4.0: Linux PHSA-2024-4.0-0655	24 Jul 202400:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-8028-1)	12 Feb 202600:00	–	nessus

NVD

Vulners

CNA

Node

linux linux_kernelRange5.15–6.6.103

linux linux_kernelRange6.7–6.12.44

linux linux_kernelRange6.13–6.16.4

linux linux_kernelMatch6.17rc1

linux linux_kernelMatch6.17rc2

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/oplock.c"
    ],
    "versions": [
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "a1d2bab4d53368a526c97aba92671dd71814f95a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "36e010bb865fbaa1202fe9bcce3fd486d6db7606",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "9a7abce6e8c0e2145b346a6d4abf0d9655e9b0e8",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "89bb430f621124af39bb31763c4a8b504c9651e2",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/oplock.c"
    ],
    "versions": [
      {
        "version": "5.15",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.15",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.103",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.44",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16.4",
        "lessThanOrEqual": "6.16.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/89bb430f621124af39bb31763c4a8b504c9651e2
git	www.git.kernel.org/stable/c/a1d2bab4d53368a526c97aba92671dd71814f95a
git	www.git.kernel.org/stable/c/36e010bb865fbaa1202fe9bcce3fd486d6db7606
git	www.git.kernel.org/stable/c/9a7abce6e8c0e2145b346a6d4abf0d9655e9b0e8

11 May 2026 21:34Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.15.5

EPSS0.00024