7 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: smb: client: fixed an incomplete backport in cfidsinvalidationworker The previous commit bdb596ceb4b7 "smb: client: fixed a potential UAF in smb2closecachedfid" was an incomplete backport. It also missed one krefput call in...
SUSE CVE-2025-68226
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix incomplete backport in cfidsinvalidationworker The previous commit bdb596ceb4b7 "smb: client: fix potential UAF in smb2closecachedfid" was an incomplete backport and missed one krefput call in...
EUVD-2025-203670
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix incomplete backport in cfidsinvalidationworker The previous commit bdb596ceb4b7 "smb: client: fix potential UAF in smb2closecachedfid" was an incomplete backport and missed one krefput call in...
CVE-2025-68226
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix incomplete backport in cfidsinvalidationworker The previous commit bdb596ceb4b7 "smb: client: fix potential UAF in smb2closecachedfid" was an incomplete backport and missed one krefput call in...
CVE-2025-68226
CVE-2025-68226 concerns a Linux kernel SMB client issue where a backport fix was incomplete: a kref_put() in cfids_invalidation_worker() was not converted to close_cached_dir(), leaving a potential UAF path. Multiple sources (RH, DebianOSV, OSV, NVD/NASL-style citations) describe the resolved vul...
CVE-2025-68226 smb: client: fix incomplete backport in cfids_invalidation_worker()
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix incomplete backport in cfidsinvalidationworker The previous commit bdb596ceb4b7 "smb: client: fix potential UAF in smb2closecachedfid" was an incomplete backport and missed one krefput call in...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from cfidsinvalidationworker not properly converting krefput calls, which could lead to resource release issues...