CVE-2025-38208

Summary

In the Linux kernel, the following vulnerability has been resolved:

smb: client: add NULL check in automount_fullpath

page is checked for null in __build_path_from_dentry_optional_prefix when tcon->origin_fullpath is not set. However, the check is missing when it is set. Add a check to prevent a potential NULL pointer dereference.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd5a863a153e90996ab2aef6b9e08d509f4d5662b < 37166d63e42c34846a16001950ecec96229a8d17affected
LinuxLinuxd5a863a153e90996ab2aef6b9e08d509f4d5662b < a9e916fa5c7d0ec2256aa44aa24ddd92f529ce35affected
LinuxLinuxd5a863a153e90996ab2aef6b9e08d509f4d5662b < cce8e71ca1f7ad9045707f0d22490c1e9ed1df6caffected
LinuxLinuxd5a863a153e90996ab2aef6b9e08d509f4d5662b < f1e7a277a1736e12cc4bd6d93b8a5c439b8ca20caffected
LinuxLinuxe91802036b3e6e6e803a17ddf5783a6354fe5380affected
LinuxLinux6.2.13 < 6.3affected
LinuxLinux6.3affected
LinuxLinux0 < 6.3unaffected
LinuxLinux6.6.95 <= 6.6.*unaffected
LinuxLinux6.12.35 <= 6.12.*unaffected
LinuxLinux6.15.4 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

References