CVE-2026-45972

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF and double free in smb2_open_file() Zero out @err_iov and @err_buftype before retrying SMB2_open() to prevent an UAF bug if @data != NULL, otherwise a double free.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/4d339b219004869e96c4ce56b8891f83a38da4c0	Patch
https://git.kernel.org/stable/c/639deb962986ef2f5e2a6d5a600c66f922471e81	Patch
https://git.kernel.org/stable/c/7425453ea16dbc3bbb0f6cac4d60b537e5e4d151	Patch
https://git.kernel.org/stable/c/96e53bb3ee2f354cf6b4ab07bcc56e500f8b3f74	Patch
https://git.kernel.org/stable/c/e66dcf7bb9c4df5582c82bc3582725abcbfbea73	Patch
https://git.kernel.org/stable/c/ebbbc4bfad4cb355d17c671223d0814ee3ef4eda	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.19:-::::::

History

16 Jun 2026, 02:42

Type	Values Removed	Values Added
CWE		CWE-416
References	~~() https://git.kernel.org/stable/c/4d339b219004869e96c4ce56b8891f83a38da4c0 -~~	() https://git.kernel.org/stable/c/4d339b219004869e96c4ce56b8891f83a38da4c0 - Patch
References	~~() https://git.kernel.org/stable/c/639deb962986ef2f5e2a6d5a600c66f922471e81 -~~	() https://git.kernel.org/stable/c/639deb962986ef2f5e2a6d5a600c66f922471e81 - Patch
References	~~() https://git.kernel.org/stable/c/7425453ea16dbc3bbb0f6cac4d60b537e5e4d151 -~~	() https://git.kernel.org/stable/c/7425453ea16dbc3bbb0f6cac4d60b537e5e4d151 - Patch
References	~~() https://git.kernel.org/stable/c/96e53bb3ee2f354cf6b4ab07bcc56e500f8b3f74 -~~	() https://git.kernel.org/stable/c/96e53bb3ee2f354cf6b4ab07bcc56e500f8b3f74 - Patch
References	~~() https://git.kernel.org/stable/c/e66dcf7bb9c4df5582c82bc3582725abcbfbea73 -~~	() https://git.kernel.org/stable/c/e66dcf7bb9c4df5582c82bc3582725abcbfbea73 - Patch
References	~~() https://git.kernel.org/stable/c/ebbbc4bfad4cb355d17c671223d0814ee3ef4eda -~~	() https://git.kernel.org/stable/c/ebbbc4bfad4cb355d17c671223d0814ee3ef4eda - Patch
First Time		Linux linux Kernel Linux
CPE		cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.19:-::::::

30 May 2026, 11:17

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8

27 May 2026, 14:17

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-05-27 14:17

Updated : 2026-06-17 10:52

NVD link : CVE-2026-45972

Mitre link : CVE-2026-45972

CVE.ORG link : CVE-2026-45972

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-416

Use After Free

9.8 /10