SUSE CVE-2025-38737

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix oops due to uninitialised variable Fix smb3inittransformrq to initialise buffer to NULL before calling netfsallocfolioqbuffer as netfs assumes it can append to the buffer it is given. Setting it to NULL means it should...

PT-2025-36267

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue in the CIFS implementation where the smb3 init transform rq function does not initialize a buffer to NULL before calling netfs alloc folioq buffer...

AZL-73845 CVE-2025-38728 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: smb3: fix for slab out of bounds on mount to ksmbd With KASAN enabled, it is possible to get a slab out of bounds during mount to ksmbd due to missing check in parseserverinterfaces see below: BUG: KASAN: slab-out-of-bounds in...

smb: client: fix use-after-free in cifs_oplock_break

...

smb: client: fix potential deadlock when releasing mids

...

smb: client: fix warning when reconnecting channel

...

smb: client: fix potential UAF in cifs_stats_proc_show()

...

smb: client: fix potential UAF in cifs_dump_full_key()

...

smb: prevent use-after-free due to open_cached_dir error paths

...

smb: client: fix use-after-free bug in cifs_debug_data_proc_show()

...

smb: client: fix potential UAF in cifs_debug_files_proc_show()

...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from an SMB server link operation resulting in a deadlock...

Amazon Linux 2 : samba, --advisory ALAS2-2025-2979 (ALAS-2025-2979)

The version of samba installed on the remote host is prior to 4.10.16-24. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2979 advisory. All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be...

smb: client: guarantee refcounted children from parent session

...

smb: client: fix potential UAF in smb2_is_valid_oplock_break()

...

smb: client: fix use-after-free in smb2_query_info_compound()

...

smb3: missing lock when picking channel

...

smb: client: fix potential UAF in cifs_stats_proc_write()

...

smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect()

...

smb: client: fix potential UAF in smb2_is_valid_lease_break()

...