CVE-2025-39932

🗓️ 04 Oct 2025 07:30:56Reported by LinuxType

CVE-2025-39932: Server Message Block client destroy may free memory before post_send_credits_work finishes, causing use after free.

Reporter	Title	Published	Views	Family All 60
AstraLinux	Astra Linux - уязвимость в linux-6.12	13 Jan 202614:01	–	astralinux
Circl	CVE-2025-39932	4 Oct 202512:27	–	circl
CNNVD	Linux kernel 安全漏洞	4 Oct 202500:00	–	cnnvd
Cvelist	CVE-2025-39932 smb: client: let smbd_destroy() call disable_work_sync(&info->post_send_credits_work)	4 Oct 202507:30	–	cvelist
Debian CVE	CVE-2025-39932	4 Oct 202507:30	–	debiancve
EUVD	EUVD-2025-32401	4 Oct 202509:30	–	euvd
Microsoft CVE	smb: client: let smbd_destroy() call disable_work_sync(&info->post_send_credits_work)	5 Oct 202501:02	–	mscve
NVD	CVE-2025-39932	4 Oct 202508:15	–	nvd
OpenVAS	Ubuntu: Security Advisory (USN-8095-1)	17 Mar 202600:00	–	openvas
OpenVAS	Ubuntu: Security Advisory (USN-8095-2)	17 Mar 202600:00	–	openvas

NVD

Vulners

CNA

Node

linux linux_kernelRange4.16–6.12.49

linux linux_kernelRange6.13–6.16.9

linux linux_kernelMatch6.17rc1

linux linux_kernelMatch6.17rc2

linux linux_kernelMatch6.17rc3

linux linux_kernelMatch6.17rc4

linux linux_kernelMatch6.17rc5

linux linux_kernelMatch6.17rc6

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/client/smbdirect.c"
    ],
    "versions": [
      {
        "version": "f198186aa9bbd60fae7a2061f4feec614d880299",
        "lessThan": "6ae90a2baf923e85eb037b636aa641250bf4220f",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f198186aa9bbd60fae7a2061f4feec614d880299",
        "lessThan": "3fabb1236f2e3ad78d531be0a4ad9f4a4ccdda87",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "f198186aa9bbd60fae7a2061f4feec614d880299",
        "lessThan": "d9dcbbcf9145b68aa85c40947311a6907277e097",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/client/smbdirect.c"
    ],
    "versions": [
      {
        "version": "4.16",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.16",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.49",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16.9",
        "lessThanOrEqual": "6.16.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/d9dcbbcf9145b68aa85c40947311a6907277e097
git	www.git.kernel.org/stable/c/6ae90a2baf923e85eb037b636aa641250bf4220f
git	www.git.kernel.org/stable/c/3fabb1236f2e3ad78d531be0a4ad9f4a4ccdda87

11 May 2026 21:39Current

6.2Medium risk

Vulners AI Score6.2

CVSS 3.15.5

EPSS0.00013