CVE-2025-22041

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix use-after-free in ksmbd_sessions_deregister()

In multichannel mode, UAF issue can occur in session_deregister when the second channel sets up a session through the connection of the first channel. session that is freed through the global session table can be accessed again through ->sessions of connection.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < f0eb3f575138b816da74697bd506682574742fcdaffected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < a8a8ae303a8395cbac270b5b404d85df6ec788f8affected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < ca042cc0e4f9e0d2c8f86dd67e4b22f30a516a9baffected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 8ed0e9d2f410f63525afb8351181eea36c80bcf1affected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 33cc29e221df7a3085ae413e8c26c4e81a151153affected
LinuxLinux0626e6641f6b467447c81dd7678a69c66f7746cf < 15a9605f8d69dc85005b1a00c31a050b8625e1aaaffected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux6.1.134 <= 6.1.*unaffected
LinuxLinux6.6.87 <= 6.6.*unaffected
LinuxLinux6.12.23 <= 6.12.*unaffected
LinuxLinux6.13.11 <= 6.13.*unaffected
LinuxLinux6.14.2 <= 6.14.*unaffected
LinuxLinux6.15 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References