Linux Kernel ksmbd Component Use-After-Free Vulnerability

Vulnerability

A use-after-free vulnerability has been identified in the ksmbd component of the Linux kernel. The issue arises in the __smb2_lease_break_noti() function, where the tcp_transport associated with a ksmbd connection is freed before the connection itself is properly released. This can lead to a use-after-free condition when __smb2_lease_break_noti() is called asynchronously after a connection is disconnected, potentially allowing for exploitation.

Impact

Exploitation of this vulnerability can lead to a use-after-free condition, which commonly allows for memory corruption and arbitrary code execution.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ksmbd Component Use-After-Free Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating