CVE-2025-68246

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's ksmbd module where a socket is leaked when the per-IP connection limit is exceeded during connection attempts. Specifically, when ksmbd kthread fn() encounters a connection limit, it sets a return value indicating a temporary failure but fails to close the accepted socket before continuing the accept loop. This results in a socket leak for each rejected connection attempt from a single IP address, potentially leading to a denial-of-service condition. The issue was discovered by ZeroPath.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2025-68246

ECHO-58CA-4C80-A0EB

MGASA-2026-0017

MGASA-2026-0018

USN-8029-1

USN-8029-2

USN-8029-3

USN-8030-1

USN-8048-1

USN-8095-1

USN-8095-2

USN-8095-3

USN-8095-4

USN-8095-5

USN-8100-1

USN-8125-1

USN-8126-1

USN-8165-1

USN-8261-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-68246

Related Identifiers

Affected Products

References · 1580