CVE-2026-23205

MEDIUM

Linux kernel - Memory Leak

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix memory leak in smb2_open_file() Reproducer: 1. server: directories are exported read-only 2. client: mount -t cifs //${server_ip}/export /mnt 3. client: dd if=/dev/zero of=/mnt/file bs=512 count=1000 oflag=direct 4. client: umount /mnt 5. client: sleep 1 6. client: modprobe -r cifs The error message is as follows: ============================================================================= BUG cifs_small_rq (Not tainted): Objects remaining on __kmem_cache_shutdown() ----------------------------------------------------------------------------- Object 0x00000000d47521be @offset=14336 ... WARNING: mm/slub.c:1251 at __kmem_cache_shutdown+0x34e/0x440, CPU#0: modprobe/1577 ... Call Trace: <TASK> kmem_cache_destroy+0x94/0x190 cifs_destroy_request_bufs+0x3e/0x50 [cifs] cleanup_module+0x4e/0x540 [cifs] __se_sys_delete_module+0x278/0x400 __x64_sys_delete_module+0x5f/0x70 x64_sys_call+0x2299/0x2ff0 do_syscall_64+0x89/0x350 entry_SYSCALL_64_after_hwframe+0x76/0x7e ... kmem_cache_destroy cifs_small_rq: Slab cache still has objects when called from cifs_destroy_request_bufs+0x3e/0x50 [cifs] WARNING: mm/slab_common.c:532 at kmem_cache_destroy+0x16b/0x190, CPU#0: modprobe/1577

References (5)

Scores

CVSS v3 5.5
EPSS 0.0003
EPSS Percentile 7.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-401
Status published
Products (19)
linux/Kernel < 6.1.163linux
linux/Kernel 6.13.0 - 6.18.10linux
linux/Kernel 6.2.0 - 6.6.124linux
linux/Kernel 6.7.0 - 6.12.70linux
Linux/Linux < 6.15
Linux/Linux 17e53a15e64b65623b8f2b1185d27d7b1cbf69ab - 743f70406264348c0830f38409eb6c40a42fb2db
Linux/Linux 18066188eb90cc0c798f3370a8078a79ddb73f70 - 3a6d6b332f92990958602c1e35ce0173e2dd62e9
Linux/Linux 6.1.163 - 6.1.*
Linux/Linux 6.12.70 - 6.12.*
Linux/Linux 6.15
... and 9 more
Published Feb 14, 2026
Tracked Since Feb 18, 2026