Home

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbd_sessions_deregister() In multichannel mode, UAF issue can occur in session_deregister when the second channel sets up a session through the connection of the first channel. session that is freed through the global session table can be accessed again through ->sessions of connection.

PUBLISHED Reserved 2024-12-29 | Published 2025-04-16 | Updated 2026-05-11 | Assigner Linux




HIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Product status

Default status
unaffected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before f0eb3f575138b816da74697bd506682574742fcd
affected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before a8a8ae303a8395cbac270b5b404d85df6ec788f8
affected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before ca042cc0e4f9e0d2c8f86dd67e4b22f30a516a9b
affected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before 8ed0e9d2f410f63525afb8351181eea36c80bcf1
affected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before 33cc29e221df7a3085ae413e8c26c4e81a151153
affected

0626e6641f6b467447c81dd7678a69c66f7746cf (git) before 15a9605f8d69dc85005b1a00c31a050b8625e1aa
affected

Default status
affected

5.15
affected

Any version before 5.15
unaffected

6.1.134 (semver)
unaffected

6.6.87 (semver)
unaffected

6.12.23 (semver)
unaffected

6.13.11 (semver)
unaffected

6.14.2 (semver)
unaffected

6.15 (original_commit_for_fix)
unaffected

References

lists.debian.org/debian-lts-announce/2025/05/msg00045.html

git.kernel.org/...c/f0eb3f575138b816da74697bd506682574742fcd

git.kernel.org/...c/a8a8ae303a8395cbac270b5b404d85df6ec788f8

git.kernel.org/...c/ca042cc0e4f9e0d2c8f86dd67e4b22f30a516a9b

git.kernel.org/...c/8ed0e9d2f410f63525afb8351181eea36c80bcf1

git.kernel.org/...c/33cc29e221df7a3085ae413e8c26c4e81a151153

git.kernel.org/...c/15a9605f8d69dc85005b1a00c31a050b8625e1aa

cve.org (CVE-2025-22041)

nvd.nist.gov (CVE-2025-22041)

Download JSON