CVE-2025-39933
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
smb: client: let recv_done verify data_offset, data_length and remaining_data_length
This is inspired by the related server fixes.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | f198186aa9bbd60fae7a2061f4feec614d880299 < 581fb78e0388b78911b0c920e4073737090c8b5f | affected |
| Linux | Linux | f198186aa9bbd60fae7a2061f4feec614d880299 < f57e53ea252363234f86674db475839e5b87102e | affected |
| Linux | Linux | 4.16 | affected |
| Linux | Linux | 0 < 4.16 | unaffected |
| Linux | Linux | 6.16.9 <= 6.16.* | unaffected |
| Linux | Linux | 6.17 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/581fb78e0388b78911b0c920e4073737090c8b5f
- https://git.kernel.org/stable/c/f57e53ea252363234f86674db475839e5b87102e
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.