CVE-2026-45972
published 2026-05-27CVE-2026-45972: In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF and double free in smb2_open_file() Zero out @err_iov and…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix potential UAF and double free in smb2_open_file()
Zero out @err_iov and @err_buftype before retrying SMB2_open() to
prevent an UAF bug if @data != NULL, otherwise a double free.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | >= 3a6d6b332f92990958602c1e35ce0173e2dd62e9 < 7425453ea16dbc3bbb0f6cac4d60b537e5e4d151 | 7425453ea16dbc3bbb0f6cac4d60b537e5e4d151 |
| linux | linux | >= 6.1.163 < 6.1.165 | 6.1.165 |
| linux | linux | >= 6.12.70 < 6.12.75 | 6.12.75 |
| linux | linux | >= 6.18.10 < 6.18.14 | 6.18.14 |
| linux | linux | >= 6.6.124 < 6.6.128 | 6.6.128 |
| linux | linux | >= 743f70406264348c0830f38409eb6c40a42fb2db < 96e53bb3ee2f354cf6b4ab07bcc56e500f8b3f74 | 96e53bb3ee2f354cf6b4ab07bcc56e500f8b3f74 |
| linux | linux | >= 9ee608a64e37cea5b4b13e436c559dd0fb2ad1b5 < e66dcf7bb9c4df5582c82bc3582725abcbfbea73 | e66dcf7bb9c4df5582c82bc3582725abcbfbea73 |
| linux | linux | >= b64e3b5d8d759dd4333992e4ba4dadf9359952c8 < 4d339b219004869e96c4ce56b8891f83a38da4c0 | 4d339b219004869e96c4ce56b8891f83a38da4c0 |
| linux | linux | >= e3a43633023e3cacaca60d4b8972d084a2b06236 < 639deb962986ef2f5e2a6d5a600c66f922471e81 | 639deb962986ef2f5e2a6d5a600c66f922471e81 |
| linux | linux | >= e3a43633023e3cacaca60d4b8972d084a2b06236 < ebbbc4bfad4cb355d17c671223d0814ee3ef4eda | ebbbc4bfad4cb355d17c671223d0814ee3ef4eda |
| linux | linux_kernel | — | — |