7 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: smb: client: Avoid race conditions in opencacheddir when leases are broken. A previously valid cfid returned from findorcreatecacheddir might cause a race condition with a leased lease being broken. As a result, opencacheddir...
EUVD-2025-201874
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2closecachedfid findorcreatecacheddir could grab a new reference after krefput had seen the refcount drop to zero but before cfidlistlock is acquired in smb2closecachedfid, leading to...
CVE-2025-40328
CVE-2025-40328 : In the Linux kernel, the smb client could suffer a use-after-free in smb2_close_cached_fid() due to a race where a new reference could be grabbed after kref_put() dropped to zero but before cfid_list_lock is acquired. The fix switches to kref_put_lock() so cfid_release() is calle...
SUSE CVE-2025-37954
In the Linux kernel, the following vulnerability has been resolved: smb: client: Avoid race in opencacheddir with lease breaks A pre-existing valid cfid returned from findorcreatecacheddir might race with a lease break, meaning opencacheddir doesn't consider it valid, and thinks it's...
DEBIAN-CVE-2025-37954
In the Linux kernel, the following vulnerability has been resolved: smb: client: Avoid race in opencacheddir with lease breaks A pre-existing valid cfid returned from findorcreatecacheddir might race with a lease break, meaning opencacheddir doesn't consider it valid, and thinks it's...
UBUNTU-CVE-2025-37954
In the Linux kernel, the following vulnerability has been resolved: smb: client: Avoid race in opencacheddir with lease breaks A pre-existing valid cfid returned from findorcreatecacheddir might race with a lease break, meaning opencacheddir doesn't consider it valid, and thinks it's...
CVE-2025-37954
CVE-2025-37954 affects the Linux kernel SMB client logic. The issue is a race in open_cached_dir with lease breaks where a pre-existing valid cfid returned by find_or_create_cached_dir can race with a queued lease break, causing open_cached_dir to treat it as newly constructed and leak a dentry r...