In the Linux kernel, the following vulnerability has been resolved: ksmbd: use aead_request_free to match aead_request_alloc Use aead_request_free() instead of kfree() to properly free memory allocated by aead_request_alloc(). This ensures sensitive crypto data is zeroed before being freed. CREATE(Triage):(User=admin) CVE-2025-38575 (https://nvd.nist.gov/vuln/detail/CVE-2025-38575)
