Acknowledged
Created: Dec 16, 2025
Updated: Dec 18, 2025
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]ksmbd: close accepted socket when per-IP limit rejects connection[EOL][EOL]When the per-IP connection limit is exceeded in ksmbd_kthread_fn(),[EOL]the code sets ret = -EAGAIN and continues the accept loop without[EOL]closing the just-accepted socket. That leaks one socket per rejected[EOL]attempt from a single IP and enables a trivial remote DoS.[EOL][EOL]Release client_sk before continuing.[EOL][EOL]This bug was found with ZeroPath.
