CVE-2025-71204

Advisory lineage Upstream: 0 Downstream: 5

Downstream

DEBIAN-CVE-2025-71204 DSA-6141-1 MGASA-2026-0097 MGASA-2026-0098 UBUNTU-CVE-2025-71204

Analyzed

Published: 14 Feb 2026, 16:27

Last modified:23 May 2026, 16:03

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (nvd)

EPSS Score

0.02% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

14 Feb 2026, 16:27

Published

Vulnerability first disclosed

23 May 2026, 16:03

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix refcount leak in parse_durable_handle_context() When the command is a replay operation and -ENOEXEC is returned, the refcount of ksmbd_file must be released.

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.02%• Percentile: 4%

Affected Systems

linux•linux
≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 07df5ff4f6490a5c96715b7c562e0b2908422e04 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 8a15107c4c031fb19737bf2eb4000f847f1d5e4c | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 70dd3513ed6ac8c6cab23f72c5b19f44ca89de9d | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 3296c3012a9d9a27e81e34910384e55a6ff3cff0 | ≥ 8df4bcdb0a4232192b2445256c39b787d58ef14d, < 07df5ff4f6490a5c96715b7c562e0b2908422e04 | ≥ c8efcc786146a951091588e5fa7e3c754850cb3c, < 8a15107c4c031fb19737bf2eb4000f847f1d5e4c | ≥ c8efcc786146a951091588e5fa7e3c754850cb3c, < 70dd3513ed6ac8c6cab23f72c5b19f44ca89de9d | ≥ c8efcc786146a951091588e5fa7e3c754850cb3c, < 3296c3012a9d9a27e81e34910384e55a6ff3cff0 | ≥ 6.6.32, < 6.6.124 | 6.9
linux•linux_kernel
≥ 6.6.32, < 6.6.124 | ≥ 6.9, < 6.12.70 | ≥ 6.13, < 6.18.10 | 6.19:rc1 | 6.19:rc2 | 6.19:rc3