CVE-2025-39929 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path During tests of another unrelated patch I was able to trigger this error: Objects remaining on __kmem_cache_shutdown()

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00018.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/0991418bf98f191d0c320bd25245fcffa1998c7e
https://git.kernel.org/stable/c/3d7c075c878ac844e33c43e506c2fa27ac7e9689
https://git.kernel.org/stable/c/922338efaad63cfe30d459dfc59f9d69ff93ded4
https://git.kernel.org/stable/c/daac51c7032036a0ca5f1aa419ad1b0471d1c6e0
https://git.kernel.org/stable/c/e7b7a93879558e77d950f1ff9a6f3daa385b33df

History

Sat, 04 Oct 2025 07:45:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: smb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path During tests of another unrelated patch I was able to trigger this error: Objects remaining on __kmem_cache_shutdown()
Title		smb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path
References		https://git.kernel.org/stable/c/0991418bf98f191d0c320bd25245fcffa1998c7e https://git.kernel.org/stable/c/3d7c075c878ac844e33c43e506c2fa27ac7e9689 https://git.kernel.org/stable/c/922338efaad63cfe30d459dfc59f9d69ff93ded4 https://git.kernel.org/stable/c/daac51c7032036a0ca5f1aa419ad1b0471d1c6e0 https://git.kernel.org/stable/c/e7b7a93879558e77d950f1ff9a6f3daa385b33df

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-10-04T07:30:55.153Z

Updated: 2025-10-04T07:30:55.153Z

Reserved: 2025-04-16T07:20:57.147Z

Link: CVE-2025-39929

Vulnrichment

No data.

NVD

Status : Received

Published: 2025-10-04T08:15:44.620

Modified: 2025-10-04T08:15:44.620

Link: CVE-2025-39929

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-39929", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-04-16T07:20:57.147Z", "datePublished": "2025-10-04T07:30:55.153Z", "dateUpdated": "2025-10-04T07:30:55.153Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-10-04T07:30:55.153Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path\n\nDuring tests of another unrelated patch I was able to trigger this\nerror: Objects remaining on __kmem_cache_shutdown()"}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["fs/smb/client/smbdirect.c"], "versions": [{"version": "f198186aa9bbd60fae7a2061f4feec614d880299", "lessThan": "3d7c075c878ac844e33c43e506c2fa27ac7e9689", "status": "affected", "versionType": "git"}, {"version": "f198186aa9bbd60fae7a2061f4feec614d880299", "lessThan": "e7b7a93879558e77d950f1ff9a6f3daa385b33df", "status": "affected", "versionType": "git"}, {"version": "f198186aa9bbd60fae7a2061f4feec614d880299", "lessThan": "922338efaad63cfe30d459dfc59f9d69ff93ded4", "status": "affected", "versionType": "git"}, {"version": "f198186aa9bbd60fae7a2061f4feec614d880299", "lessThan": "0991418bf98f191d0c320bd25245fcffa1998c7e", "status": "affected", "versionType": "git"}, {"version": "f198186aa9bbd60fae7a2061f4feec614d880299", "lessThan": "daac51c7032036a0ca5f1aa419ad1b0471d1c6e0", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["fs/smb/client/smbdirect.c"], "versions": [{"version": "4.16", "status": "affected"}, {"version": "0", "lessThan": "4.16", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.154", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.108", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.49", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.16.9", "lessThanOrEqual": "6.16.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.17", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.16", "versionEndExcluding": "6.1.154"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.16", "versionEndExcluding": "6.6.108"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.16", "versionEndExcluding": "6.12.49"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.16", "versionEndExcluding": "6.16.9"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.16", "versionEndExcluding": "6.17"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/3d7c075c878ac844e33c43e506c2fa27ac7e9689"}, {"url": "https://git.kernel.org/stable/c/e7b7a93879558e77d950f1ff9a6f3daa385b33df"}, {"url": "https://git.kernel.org/stable/c/922338efaad63cfe30d459dfc59f9d69ff93ded4"}, {"url": "https://git.kernel.org/stable/c/0991418bf98f191d0c320bd25245fcffa1998c7e"}, {"url": "https://git.kernel.org/stable/c/daac51c7032036a0ca5f1aa419ad1b0471d1c6e0"}], "title": "smb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path", "x_generator": {"engine": "bippy-1.2.0"}}}}