CVE-2025-40103

Linux Kernel - Refcount Leak in cifs_sb_tlink

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix refcount leak for cifs_sb_tlink Fix three refcount inconsistency issues related to `cifs_sb_tlink`. Comments for `cifs_sb_tlink` state that `cifs_put_tlink()` needs to be called after successful calls to `cifs_sb_tlink()`. Three calls fail to update refcount accordingly, leading to possible resource leaks.

Scores

EPSS 0.0019
EPSS Percentile 8.6%

Details

Status published
Products (20)
linux/Kernel 3.7.0 - 5.15.203linux
linux/Kernel 3.7.0 - 6.1.158linux
linux/Kernel 5.16.0 - 6.1.158linux
linux/Kernel 6.13.0 - 6.17.5linux
linux/Kernel 6.2.0 - 6.6.114linux
linux/Kernel 6.7.0 - 6.12.55linux
Linux/Linux < 3.7
Linux/Linux 3.7
Linux/Linux 5.15.203 - 5.15.*
Linux/Linux 6.1.158 - 6.1.*
... and 10 more
Published Oct 30, 2025
Tracked Since Feb 18, 2026