CVE-2025-38711

MEDIUM EPSS 1.6%
Published Sep 4, 20259mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Sep 4, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock when linking with ReplaceIfExists If smb2_create_link() is called with ReplaceIfExists set and the name does exist then a deadlock will happen. ksmbd_vfs_kern_path_locked() will return with success and the parent directory will be locked. ksmbd_vfs_remove_file() will then remove the file. ksmbd_vfs_link() will then be called while the parent is still locked. It will try to lock the same parent and will deadlock. This patch moves the ksmbd_vfs_kern_path_unlock() call to *before* ksmbd_vfs_link() and then simplifies the code, removing the file_present flag variable.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
1.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-667

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥5.15  –  <5.15.190
linuxlinux_kernel*≥5.16  –  <6.1.149
linuxlinux_kernel*≥6.2  –  <6.6.103
linuxlinux_kernel*≥6.7  –  <6.12.43
linuxlinux_kernel*≥6.13  –  <6.15.11
linuxlinux_kernel*≥6.16  –  <6.16.2
debiandebian_linux11.0any

References 9

  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-032379.html
  • git.kernel.org https://git.kernel.org/stable/c/1e858a7a51c7b8b009d8f246de7ceb7743b44a71
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/814cfdb6358d9b84fcbec9918c8f938cc096a43a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9d5012ffe14120f978ee34aef4df3d6cb026b7c4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a726fef6d7d4cfc365d3434e3916dbfe78991a33
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a7dddd62578c2eb6cb28b8835556a121b5157323
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ac98d54630d5b52e3f684d872f0d82c06c418ea9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5fc1400a34b4ea5e8f2ce296ea12bf8c8421694
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html
    Mailing ListThird Party Advisory

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/1e858a7a51c7b8b009d8f246de7ceb7743b44a71
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/814cfdb6358d9b84fcbec9918c8f938cc096a43a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9d5012ffe14120f978ee34aef4df3d6cb026b7c4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a726fef6d7d4cfc365d3434e3916dbfe78991a33
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a7dddd62578c2eb6cb28b8835556a121b5157323
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ac98d54630d5b52e3f684d872f0d82c06c418ea9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d5fc1400a34b4ea5e8f2ce296ea12bf8c8421694
    Patch