CVE-2025-21945

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2_lock If smb_lock->zero_len has value, ->llist of smb_lock is not delete and flock is old one. It will cause use-after-free on error handling routine.

Reserved 2024-12-29 | Published 2025-04-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

0626e6641f6b467447c81dd7678a69c66f7746cf before 410ce35a2ed6d0e114132bba29af49b69880c8c7
affected

0626e6641f6b467447c81dd7678a69c66f7746cf before 8573571060ca466cbef2c6f03306b2cc7b883506
affected

0626e6641f6b467447c81dd7678a69c66f7746cf before a0609097fd10d618aed4864038393dd75131289e
affected

0626e6641f6b467447c81dd7678a69c66f7746cf before 636e021646cf9b52ddfea7c809b018e91f2188cb
affected

0626e6641f6b467447c81dd7678a69c66f7746cf before 84d2d1641b71dec326e8736a749b7ee76a9599fc
affected

Default status
affected

5.15
affected

Any version before 5.15
unaffected

6.1.131
unaffected

6.6.83
unaffected

6.12.19
unaffected

6.13.7
unaffected

6.14
unaffected

References

git.kernel.org/...c/410ce35a2ed6d0e114132bba29af49b69880c8c7

git.kernel.org/...c/8573571060ca466cbef2c6f03306b2cc7b883506

git.kernel.org/...c/a0609097fd10d618aed4864038393dd75131289e

git.kernel.org/...c/636e021646cf9b52ddfea7c809b018e91f2188cb

git.kernel.org/...c/84d2d1641b71dec326e8736a749b7ee76a9599fc

cve.org (CVE-2025-21945)

nvd.nist.gov (CVE-2025-21945)

Download JSON