CVE-2025-9640

A flaw was found in Samba, in the vfs_streams_xattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
redhatCNA
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CISA-ADPADP
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 23%
Debian logo
Debian Releases
Debian Product
Codename
samba
bullseye
vulnerable
bookworm
no-dsa
bullseye (security)
2:4.13.13+dfsg-1~deb11u7
fixed
bookworm (security)
vulnerable
trixie
2:4.22.6+dfsg-0+deb13u1
fixed
forky
2:4.23.3+dfsg-1
fixed
sid
2:4.23.3+dfsg-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
samba
questing
Fixed 2:4.22.3+dfsg-4ubuntu2.1
released
plucky
Fixed 2:4.21.4+dfsg-1ubuntu3.5
released
noble
Fixed 2:4.19.5+dfsg-4ubuntu9.4
released
jammy
Fixed 2:4.15.13+dfsg-0ubuntu1.10
released
focal
Fixed 2:4.15.13+dfsg-0ubuntu0.20.04.8+esm1
released
bionic
Fixed 2:4.7.6+dfsg~ubuntu-0ubuntu2.29+esm3
released
xenial
Fixed 2:4.3.11+dfsg-0ubuntu0.16.04.34+esm4
released
trusty
Fixed 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm15
released
Common Weakness Enumeration
References
https://access.redhat.com/security/cve/CVE-2025-9640
https://bugzilla.redhat.com/show_bug.cgi?id=2391698
https://www.samba.org/samba/history/security.html
http://www.openwall.com/lists/oss-security/2025/10/15/2
http://www.openwall.com/lists/oss-security/2025/10/16/2
https://lists.debian.org/debian-lts-announce/2025/11/msg00027.html