Linux Kernel CIFS Module Memory Leak Vulnerability in Session Setup

Vulnerability

A vulnerability in the CIFS (Common Internet File System) module of the Linux kernel has been addressed, which could lead to memory leaks during session setup. The issue arose because the authentication key response was not properly managed, potentially causing memory to be retained unnecessarily during reconnection or mounting processes.

Impact

The vulnerability could cause memory leaks, which may lead to increased memory usage and potential exhaustion of system resources over time.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel CIFS Module Memory Leak Vulnerability in Session Setup

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating