CVE-2026-45972

Source
https://cve.org/CVERecord?id=CVE-2026-45972
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45972.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-45972
Downstream
Published
2026-05-27T12:18:31.500Z
Modified
2026-07-08T08:13:41.709918171Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
smb: client: fix potential UAF and double free in smb2_open_file()
Details

In the Linux kernel, the following vulnerability has been resolved:

smb: client: fix potential UAF and double free in smb2openfile()

Zero out @erriov and @errbuftype before retrying SMB2_open() to prevent an UAF bug if @data != NULL, otherwise a double free.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45972.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
743f70406264348c0830f38409eb6c40a42fb2db
Fixed
96e53bb3ee2f354cf6b4ab07bcc56e500f8b3f74
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
3a6d6b332f92990958602c1e35ce0173e2dd62e9
Fixed
7425453ea16dbc3bbb0f6cac4d60b537e5e4d151
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
b64e3b5d8d759dd4333992e4ba4dadf9359952c8
Fixed
4d339b219004869e96c4ce56b8891f83a38da4c0
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
9ee608a64e37cea5b4b13e436c559dd0fb2ad1b5
Fixed
e66dcf7bb9c4df5582c82bc3582725abcbfbea73
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e3a43633023e3cacaca60d4b8972d084a2b06236
Fixed
639deb962986ef2f5e2a6d5a600c66f922471e81
Fixed
ebbbc4bfad4cb355d17c671223d0814ee3ef4eda
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
6.1.163
Fixed
6.1.165
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
6.6.124
Fixed
6.6.128
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
6.12.70
Fixed
6.12.75
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
6.18.10
Fixed
6.18.14

Affected versions

v6.*
v6.1.163
v6.1.164
v6.12.70
v6.12.71
v6.12.72
v6.12.73
v6.12.74
v6.18.10
v6.18.11
v6.18.12
v6.18.13
v6.6.124
v6.6.125
v6.6.126
v6.6.127

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45972.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.1.165
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.128
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.75
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.14
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.4

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45972.json"