Medium severity4.3NVD Advisory· Published Oct 15, 2025· Updated Apr 15, 2026
CVE-2025-9640
CVE-2025-9640
Description
A flaw was found in Samba, in the vfs_streams_xattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
35- osv-coords34 versionspkg:rpm/opensuse/samba&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/samba&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/samba&distro=openSUSE%20Tumbleweedpkg:rpm/suse/samba&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP3pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP4pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP5pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP6pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP7pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/samba&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/samba&distro=SUSE%20Linux%20Micro%206.2pkg:rpm/suse/samba&distro=SUSE%20Manager%20Proxy%20LTS%204.3pkg:rpm/suse/samba&distro=SUSE%20Manager%20Server%20LTS%204.3
< 4.19.8+git.435.78ced6cf30d-150600.3.21.1+ 33 more
- (no CPE)range: < 4.19.8+git.435.78ced6cf30d-150600.3.21.1
- (no CPE)range: < 4.22.5+git.431.dc5a539f124-160000.1.1
- (no CPE)range: < 4.22.5+git.431.dc5a539f124-1.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150300.3.96.1
- (no CPE)range: < 4.15.13+git.664.e8416d8d213-3.99.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150300.3.96.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150400.3.40.1
- (no CPE)range: < 4.17.12+git.510.0efaadf376b-150500.3.34.1
- (no CPE)range: < 4.19.8+git.435.78ced6cf30d-150600.3.21.1
- (no CPE)range: < 4.21.8+git.418.e80c9b2a88c-150700.3.11.2
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150300.3.96.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150400.3.40.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150400.3.40.1
- (no CPE)range: < 4.17.12+git.510.0efaadf376b-150500.3.34.1
- (no CPE)range: < 4.17.12+git.510.0efaadf376b-150500.3.34.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150300.3.96.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150400.3.40.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150400.3.40.1
- (no CPE)range: < 4.17.12+git.510.0efaadf376b-150500.3.34.1
- (no CPE)range: < 4.19.8+git.435.78ced6cf30d-150600.3.21.1
- (no CPE)range: < 4.21.8+git.418.e80c9b2a88c-150700.3.11.2
- (no CPE)range: < 4.15.13+git.664.e8416d8d213-3.99.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150300.3.96.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150400.3.40.1
- (no CPE)range: < 4.17.12+git.510.0efaadf376b-150500.3.34.1
- (no CPE)range: < 4.22.5+git.431.dc5a539f124-160000.1.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150300.3.96.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150400.3.40.1
- (no CPE)range: < 4.17.12+git.510.0efaadf376b-150500.3.34.1
- (no CPE)range: < 4.22.5+git.431.dc5a539f124-160000.1.1
- (no CPE)range: < 4.15.13+git.664.e8416d8d213-3.99.1
- (no CPE)range: < 4.22.5+git.431.dc5a539f124-160000.1.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150400.3.40.1
- (no CPE)range: < 4.15.13+git.736.b791be993ba-150400.3.40.1
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.