IBM Storage Scale 安全漏洞

IBM Storage Scale is a storage solution from International Business Machines IBM designed to help organizations efficiently manage and scale storage resources to meet growing data storage needs. A security vulnerability exists in IBM Storage Scale versions 5.2.3.0 and 5.2.3.1, which stems from an...

ksmbd: fix use-after-free in smb_break_all_levII_oplock()

...

smb: client: Avoid race in open_cached_dir with lease breaks

...

UBUNTU-CVE-2025-38321

In the Linux kernel, the following vulnerability has been resolved: smb: Log an error when closeallcacheddirs fails Under low-memory conditions, closeallcacheddirs can't move the dentries to a separate list to dput them once the locks are dropped. This will result in a "Dentry still in use" error...

UBUNTU-CVE-2025-38325

In the Linux kernel, the following vulnerability has been resolved: ksmbd: add freetransport ops in ksmbd connection freetransport function for tcp connection can be called from smbdirect. It will cause kernel oops. This patch add freetransport ops in ksmbd connection, and add each freetransports...

PT-2025-29043

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the Server Message Block SMB implementation. Under low-memory conditions, the close all cached dirs function may fail to properly manage dentrie...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure of closeallcacheddirs under low memory conditions in the smb driver, which could result in a mount...

DEBIAN-CVE-2025-38244

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when reconnecting channels Fix cifssignalcifsdforreconnect to take the correct lock order and prevent the following deadlock from happening =====================================================...

AZL-64838 CVE-2025-38244 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when reconnecting channels Fix cifssignalcifsdforreconnect to take the correct lock order and prevent the following deadlock from happening =====================================================...

UBUNTU-CVE-2025-38244

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when reconnecting channels Fix cifssignalcifsdforreconnect to take the correct lock order and prevent the following deadlock from happening =====================================================...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a potential deadlock when an smb client reconnects to the channel...

Security update for samba

This update for samba fixes the following issues: CVE-2025-0620: smbd doesn't pick up group membership changes when re-authenticating an expired SMB session bsc1244136. Other bugfixes: net ad join fails with "Failed to join domain: failed to create kerberos keytab" bsc1238063. Patch Instructions:...

AZL-64692 CVE-2025-38208 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: smb: client: add NULL check in automountfullpath page is checked for null in buildpathfromdentryoptionalprefix when tcon-originfullpath is not set. However, the check is missing when it is set. Add a check to prevent a potential...

The vulnerability of the smb2pdu.c component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the smb2pdu.c component in the Linux operating system’s kernel is related to improper control of resource identifiers. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

USN-7608-2 linux-fips, linux-aws-fips, linux-gcp-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; CVE-2025-37890...

kernel: Kernel: Denial of Service via memory leak in SMB client

A flaw was found in the Linux kernel's Server Message Block SMB client. A local attacker with low privileges could exploit a memory leak in the cifssmb3domount function. This could lead to a Denial of Service DoS due to resource exhaustion...

kernel: Kernel: Denial of Service via memory leak in SMB client

A flaw was found in the Linux kernel's Server Message Block SMB client. A local attacker with low privileges could exploit a memory leak in the cifssmb3domount function. This could lead to a Denial of Service DoS due to resource exhaustion...

PT-2025-28872

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.16.0-rc3-build2+ 1301 Description: The Linux kernel contains a flaw within the SMB client implementation that can lead to a potential deadlock when reconnecting channels. Specifically, an incorrect lock order...

The vulnerability of the cifs_get_tcon_super() function in the fs/smb/client/cifsproto.h module of the SMB client support in Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the cifsgettconsuper function in the fs/smb/client/cifsproto.h module, which is part of the SMB client support in Linux kernel, relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

The vulnerability of the invalidate_all_cached_dirs() function in the fs/smb/client/cached_dir.c module, which is part of the SMB client kernel support for Linux operating systems, allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the invalidateallcacheddirs function in the fs/smb/client/cacheddir.c module of the SMB client kernel for Linux operating systems is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentialit...