CVE-2025-37962

Source
https://nvd.nist.gov/vuln/detail/CVE-2025-37962
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37962.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-37962
Downstream
Related
Published
2025-05-20T16:15:34Z
Modified
2025-08-13T00:00:22Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix memory leak in parseleasestate()

The previous patch that added bounds check for create lease context introduced a memory leak. When the bounds check fails, the function returns NULL without freeing the previously allocated leasectxinfo structure.

This patch fixes the issue by adding kfree(lreq) before returning NULL in both boundary check cases.

References

Affected packages