Tag: concurrency issue

Source URL: https://simonwillison.net/2025/May/24/sean-heelan/ Source: Simon Willison’s Weblog Title: Quoting Sean Heelan Feedly Summary: The vulnerability [o3] found is CVE-2025-37899 (fix here), a use-after-free in the handler for the SMB ‘logoff’ command. Understanding the vulnerability requires reasoning about concurrent connections to the server, and how they may share various objects in specific circumstances. o3 was able…