CVE-2025-40103

CVSS v2.0

1.5

Low

Vector

AV:L/AC:M/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description The Linux kernel contains a resource leak issue related to the cifs sb tlink function within the SMB client. Three calls fail to update the reference count correctly after successful calls to cifs sb tlink(), potentially leading to resource leaks. The cifs sb tlink() function requires cifs put tlink() to be called after successful execution to manage resource references.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-911

Related Identifiers

AZL-69404

BDU:2026-02779

CVE-2025-40103

DLA-4379-1

DSA-6053-1

ECHO-B00E-17A6-E1D0

MGASA-2025-0309

MGASA-2025-0310

OESA-2026-1303

OESA-2026-1304

OESA-2026-1305

OPENSUSE-SU-2025:15702-1

OPENSUSE-SU-2026:10301-1

OPENSUSE-SU-2026:20416-1

SUSE-SU-2026:0962-1

SUSE-SU-2026:1041-1

SUSE-SU-2026:1078-1

SUSE-SU-2026:1081-1

SUSE-SU-2026:20667-1

SUSE-SU-2026:20720-1

SUSE-SU-2026:20838-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

SUSE-SU-2026:20931-1

SUSE-SU-2026:21284-1

USN-8029-1

USN-8029-2

USN-8029-3

USN-8030-1

USN-8048-1

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8165-1

USN-8261-1

Affected Products

Debian

Linux Kernel

Linuxmint

Ubuntu

CVE-2025-40103

Weakness Enumeration

Related Identifiers

Affected Products

References · 3434