Medium severity5.3NVD Advisory· Published Aug 2, 2025· Updated Apr 15, 2026

CVE-2023-32255

Description

A flaw was found in the Linux kernel's ksmbd component. A memory leak can occur if a client sends a session setup request with an unknown NTLMSSP message type, potentially leading to resource exhaustion.

Patches

6d7cb549c2ca

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.gitvia osv

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

access.redhat.com/security/cve/CVE-2023-32255nvd
bugzilla.redhat.com/show_bug.cginvd
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/nvd
www.zerodayinitiative.com/advisories/ZDI-23-703/nvd

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000