CVE-2025-39942

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: smbdirect: verify remaining_data_length respects max_fragmented_recv_size

This is inspired by the check for data_offset + data_length.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux2ea086e35c3d726a3bacd0a971c1f02a50e98206 < 196a3a7676d726ee67621ea2bf3b7815ac2685b4affected
LinuxLinux2ea086e35c3d726a3bacd0a971c1f02a50e98206 < d3cb3f209d35c44b7ee74f77ed27ebb28995b9ceaffected
LinuxLinux2ea086e35c3d726a3bacd0a971c1f02a50e98206 < 9644798294c7287e65a7b26e35aa6d2ce3345bccaffected
LinuxLinux2ea086e35c3d726a3bacd0a971c1f02a50e98206 < c64b915bb3d9339adcae5db4be2c35ffbef5e615affected
LinuxLinux2ea086e35c3d726a3bacd0a971c1f02a50e98206 < e1868ba37fd27c6a68e31565402b154beaa65df0affected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux6.1.154 <= 6.1.*unaffected
LinuxLinux6.6.108 <= 6.6.*unaffected
LinuxLinux6.12.49 <= 6.12.*unaffected
LinuxLinux6.16.9 <= 6.16.*unaffected
LinuxLinux6.17 <= *unaffected

Weaknesses

References