CVE-2025-71151

EUVD-2026-4391
In the Linux kernel, the following vulnerability has been resolved:

cifs: Fix memory and information leak in smb3_reconfigure()

In smb3_reconfigure(), if smb3_sync_session_ctx_passwords() fails, the
function returns immediately without freeing and erasing the newly
allocated new_password and new_password2. This causes both a memory leak
and a potential information leak.

Fix this by calling kfree_sensitive() on both password buffers before
returning in this error case.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
6.6.64 ≤
𝑥
< 6.6.120
linuxlinux_kernel
6.11.11 ≤
𝑥
< 6.12
linuxlinux_kernel
6.12.2 ≤
𝑥
< 6.12.64
linuxlinux_kernel
6.13 ≤
𝑥
< 6.18.3
linuxlinux_kernel
6.19:rc1
linuxlinux_kernel
6.19:rc2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.170-3
fixed
bookworm (security)
6.1.172-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.251-5
fixed
forky
7.0.7-1
fixed
sid
7.0.7-1
fixed
trixie
6.12.86-1
fixed
trixie (security)
6.12.88-1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
kernel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-debug
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-debug-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-debug-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-debug-devel-matched
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-debug-modules
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-debug-modules-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-debug-modules-extra
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-devel-matched
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-modules
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-modules-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-64k-modules-extra
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-abi-stablelists
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-debug
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-debug-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-debug-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-debug-devel-matched
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-debug-modules
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-debug-modules-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-debug-modules-extra
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-debug-uki-virt
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-devel-matched
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-doc
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-modules
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-modules-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-modules-extra
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-debug
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-debug-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-debug-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-debug-modules
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-debug-modules-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-debug-modules-extra
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-modules
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-modules-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-64k-modules-extra
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-debug
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-debug-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-debug-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-debug-kvm
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-debug-modules
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-debug-modules-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-debug-modules-extra
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-kvm
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-modules
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-modules-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-rt-modules-extra
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-tools
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-tools-libs
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-tools-libs-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-uki-virt
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-uki-virt-addons
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-zfcpdump
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-zfcpdump-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-zfcpdump-devel
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-zfcpdump-devel-matched
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-zfcpdump-modules
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-zfcpdump-modules-core
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
kernel-zfcpdump-modules-extra
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
libperf
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
perf
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
python3-perf
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
rtla
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
rv
RHEL 9
0:5.14.0-570.12.1.el9_6
fixed
Common Weakness Enumeration
References
https://git.kernel.org/stable/c/5679cc90bb5415801fa29041da0319d9e15d295d
https://git.kernel.org/stable/c/bb82aaee16907dc4d0b9b0ca7953ceb3edc328c6
https://git.kernel.org/stable/c/bc390b2737205163e48cc1655f6a0c8cd55b02fc
https://git.kernel.org/stable/c/cb6d5aa9c0f10074f1ad056c3e2278ad2cc7ec8d