CVE-2025-21945

HIGH EPSS 7.8%
Published Apr 1, 20251y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Apr 1, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2_lock If smb_lock->zero_len has value, ->llist of smb_lock is not delete and flock is old one. It will cause use-after-free on error handling routine.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
7.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 9

VendorProductVersionRange
linuxlinux_kernel*≥5.15  –  <6.1.131
linuxlinux_kernel*≥6.2  –  <6.6.83
linuxlinux_kernel*≥6.7  –  <6.12.19
linuxlinux_kernel*≥6.13  –  <6.13.7
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any
linuxlinux_kernel6.14any

References 6

  • git.kernel.org https://git.kernel.org/stable/c/410ce35a2ed6d0e114132bba29af49b69880c8c7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/636e021646cf9b52ddfea7c809b018e91f2188cb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84d2d1641b71dec326e8736a749b7ee76a9599fc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8573571060ca466cbef2c6f03306b2cc7b883506
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a0609097fd10d618aed4864038393dd75131289e
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/410ce35a2ed6d0e114132bba29af49b69880c8c7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/636e021646cf9b52ddfea7c809b018e91f2188cb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84d2d1641b71dec326e8736a749b7ee76a9599fc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8573571060ca466cbef2c6f03306b2cc7b883506
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a0609097fd10d618aed4864038393dd75131289e
    Patch