Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
9.8
CVE-2026-45972: Linux Kernel SMB2_open_file() Memory Leak Fix
CVE-2026-45972
Summary
A Linux kernel vulnerability has been fixed that could cause memory leaks and crashes when using SMB2 file sharing. This issue has been resolved, but it's essential to update your Linux kernel to ensure you have the latest security patches. Update your Linux kernel to the latest version to stay protected.
Original title
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix potential UAF and double free in smb2_open_file()
Zero out @err_iov and @err_buftype before retrying SMB2_open...
Original description
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix potential UAF and double free in smb2_open_file()
Zero out @err_iov and @err_buftype before retrying SMB2_open() to
prevent an UAF bug if @data != NULL, otherwise a double free.
smb: client: fix potential UAF and double free in smb2_open_file()
Zero out @err_iov and @err_buftype before retrying SMB2_open() to
prevent an UAF bug if @data != NULL, otherwise a double free.
nvd CVSS3.1
9.8
- https://git.kernel.org/stable/c/4d339b219004869e96c4ce56b8891f83a38da4c0
- https://git.kernel.org/stable/c/639deb962986ef2f5e2a6d5a600c66f922471e81
- https://git.kernel.org/stable/c/7425453ea16dbc3bbb0f6cac4d60b537e5e4d151
- https://git.kernel.org/stable/c/96e53bb3ee2f354cf6b4ab07bcc56e500f8b3f74
- https://git.kernel.org/stable/c/e66dcf7bb9c4df5582c82bc3582725abcbfbea73
- https://git.kernel.org/stable/c/ebbbc4bfad4cb355d17c671223d0814ee3ef4eda
Published: 27 May 2026 · Updated: 31 May 2026 · First seen: 30 May 2026