Inconsistent Reference Count Update in Linux Kernel SMB Support
CVE-2025-39819

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 September 2025

What is CVE-2025-39819?

A vulnerability was discovered in the Linux kernel's SMB support, specifically in the smb2_compound_op function. This issue involves an inconsistent update of the reference count for the cfile object, which can lead to potential resource leaks. The inconsistency arises due to a failure to properly handle the reference count in certain control flow paths, particularly when the function returns an error code of -ENOMEM, indicating memory allocation failure. A fix has been implemented to ensure that cleanup logic is executed correctly across all paths, thereby preventing resource mismanagement.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux a7d5c294628088781da9e91cbb034d61c3a71f71 < 3fc11ff13fbc2749871d6ac2141685cf54699997

Linux a7d5c294628088781da9e91cbb034d61c3a71f71 < 4191ea1f0bb3e27d65c5dcde7bd00e709ec67141

Linux a7d5c294628088781da9e91cbb034d61c3a71f71 < 4735f5991f51468b85affb8366b7067248457a71

References

https://git.kernel.org/stable/c/3fc11ff13fbc2749871d6ac21...
https://git.kernel.org/stable/c/4191ea1f0bb3e27d65c5dcde7...
https://git.kernel.org/stable/c/4735f5991f51468b85affb836...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.