CVE-2025-39975

NONE EPSS 7.9%

Published Oct 15, 20258mo ago · Modified Jun 17, 20261w ago

Published Oct 15, 2025 8mo ago

Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix wrong index reference in smb2_compound_op() In smb2_compound_op(), the loop that processes each command's response uses wrong indices when accessing response bufferes. This incorrect indexing leads to improper handling of command results. Also, if incorrectly computed index is greather than or equal to MAX_COMPOUND, it can cause out-of-bounds accesses.

Threat Intelligence

EPSS Exploit Probability

7.9% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

References 4

git.kernel.org https://git.kernel.org/stable/c/093615fc76063ea08d454ba86677ce64c736e806
git.kernel.org https://git.kernel.org/stable/c/ba7bcfd52c66dd1c2dfa5142aca7e4a70b62dfa5
git.kernel.org https://git.kernel.org/stable/c/bfb1e2aad1fecef8320fd71332acde0d53a8d699
git.kernel.org https://git.kernel.org/stable/c/fbe2dc6a9c7318f7263f5e4d50f6272b931c5756

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.