Memory Leak in Linux Kernel SMB Client Affects System Performance
CVE-2025-40268

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
6 December 2025

What is CVE-2025-40268?

A memory leak vulnerability has been identified in the SMB client of the Linux kernel, specifically within the smb3_fs_context_parse_param function. This issue arises during the parsing of parameters within fsconfig calls, where memory allocated for the first call is not properly released before the second call, leading to unreferenced memory objects. Without appropriate memory reclamation for both calls, system performance may degrade over time. Developers are urged to apply the latest patches that address this memory leak by ensuring all allocated memory is effectively freed before exiting the function.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux af1a3d2ba9543e99d78914d8fb88b61d0531d9a1 < 868fc62811d3fabcf5685e14f36377a855d5412d

Linux af1a3d2ba9543e99d78914d8fb88b61d0531d9a1 < 48c17341577e25a22feb13d694374b61d974edbc

Linux af1a3d2ba9543e99d78914d8fb88b61d0531d9a1 < 4515743cc7a42e1d67468402a6420c195532a6fa

References

https://git.kernel.org/stable/c/868fc62811d3fabcf5685e14f...
https://git.kernel.org/stable/c/48c17341577e25a22feb13d69...
https://git.kernel.org/stable/c/4515743cc7a42e1d67468402a...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.