CVE-2025-39933 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: smb: client: let recv_done verify data_offset, data_length and remaining_data_length This is inspired by the related server fixes.

PUBLISHED Reserved 2025-04-16 | Published 2025-10-04 | Updated 2025-10-04 | Assigner Linux

Product status

Default status

unaffected

f198186aa9bbd60fae7a2061f4feec614d880299 before 581fb78e0388b78911b0c920e4073737090c8b5f

affected

f198186aa9bbd60fae7a2061f4feec614d880299 before f57e53ea252363234f86674db475839e5b87102e

affected

Default status

affected

4.16

affected

Any version before 4.16

unaffected

6.16.9

unaffected

6.17

unaffected

References

git.kernel.org/...c/581fb78e0388b78911b0c920e4073737090c8b5f

git.kernel.org/...c/f57e53ea252363234f86674db475839e5b87102e

cve.org (CVE-2025-39933)

nvd.nist.gov (CVE-2025-39933)

Download JSON