CVE-2025-21748

MEDIUM EPSS 10.2%
Published Feb 27, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 27, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix integer overflows on 32 bit systems On 32bit systems the addition operations in ipc_msg_alloc() can potentially overflow leading to memory corruption. Add bounds checking using KSMBD_IPC_MAX_PAYLOAD to avoid overflow.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
10.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-190 Integer Overflow or Wraparound Numeric Error

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel*≥5.15  –  <6.1.129
linuxlinux_kernel*≥6.2  –  <6.6.78
linuxlinux_kernel*≥6.7  –  <6.12.14
linuxlinux_kernel*≥6.13  –  <6.13.3

References 7

  • git.kernel.org https://git.kernel.org/stable/c/760568c1f62ea874e8fb492f9cfa4f47b4b8391e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/82f59d64e6297f270311b16b5dcf65be406d1ea3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/aab98e2dbd648510f8f51b83fbf4721206ccae45
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b4b902737746c490258de5cb55cab39e79927a67
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ecb9947fa7c99a77b04d43404c6988a0d326e4a0
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f3b9fb2764591d792d160f375851013665a9e820
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/760568c1f62ea874e8fb492f9cfa4f47b4b8391e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/82f59d64e6297f270311b16b5dcf65be406d1ea3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/aab98e2dbd648510f8f51b83fbf4721206ccae45
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b4b902737746c490258de5cb55cab39e79927a67
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ecb9947fa7c99a77b04d43404c6988a0d326e4a0
    Patch