CVE-2025-40286

Published: Dec 6, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix possible memory leak in smb2_read() Memory leak occurs when ksmbd_vfs_read() fails. Fix this by adding the missing kvfree().

Vendor	Product	Versions
Linux	Linux	affected `e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 - < 0797c6cf3b857cc229ab2bc69552938dcd738d78` affected `e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 - < 63d8706a2c09a0c29b8b0e8a44bc7a1339685de9` affected `e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 - < f1305587731886da37a214cda812ade246c653b0` affected `e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 - < bfda5422a16651d0bf864ec468b1c216e1b10d91` affected `e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 - < 6fced056d2cc8d01b326e6fcfabaacb9850b71a4`
Linux	Linux	affected `5.15` unaffected `0 - < 5.15` unaffected `6.1.159 - <= 6.1.` unaffected `6.6.117 - <= 6.6.` unaffected `6.12.59 - <= 6.12.*` +2 more versions

References

https://git.kernel.org/stable/c/0797c6cf3b857cc229ab2bc69552938dcd738d78

https://git.kernel.org/stable/c/63d8706a2c09a0c29b8b0e8a44bc7a1339685de9

https://git.kernel.org/stable/c/f1305587731886da37a214cda812ade246c653b0

https://git.kernel.org/stable/c/bfda5422a16651d0bf864ec468b1c216e1b10d91

https://git.kernel.org/stable/c/6fced056d2cc8d01b326e6fcfabaacb9850b71a4

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-40286

Description

Affected Products

References