5.5
CVE-2025-71150
- EPSS 0.02%
- Veröffentlicht 23.01.2026 14:15:16
- Zuletzt bearbeitet 26.02.2026 20:28:42
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix refcount leak when invalid session is found on session lookup When a session is found but its state is not SMB2_SESSION_VALID, It indicates that no valid session was found, but it is missing to decrement the reference count acquired by the session lookup, which results in a reference count leak. This patch fixes the issue by explicitly calling ksmbd_user_session_put to release the reference to the session.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
LoginDaten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.15.176 < 5.16
Linux ≫ Linux Kernel Version >= 6.1.121 < 6.1.160
Linux ≫ Linux Kernel Version >= 6.6.67 < 6.6.120
Linux ≫ Linux Kernel Version >= 6.12.6 < 6.12.64
Linux ≫ Linux Kernel Version >= 6.13.1 < 6.18.3
Linux ≫ Linux Kernel Version6.13 Update-
Linux ≫ Linux Kernel Version6.13 Updaterc3
Linux ≫ Linux Kernel Version6.13 Updaterc4
Linux ≫ Linux Kernel Version6.13 Updaterc5
Linux ≫ Linux Kernel Version6.13 Updaterc6
Linux ≫ Linux Kernel Version6.13 Updaterc7
Linux ≫ Linux Kernel Version6.19 Updaterc1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.03 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|