CVE-2025-39943
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: smbdirect: validate data_offset and data_length field of smb_direct_data_transfer
If data_offset and data_length of smb_direct_data_transfer struct are invalid, out of bounds issue could happen. This patch validate data_offset and data_length field in recv_done.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 2ea086e35c3d726a3bacd0a971c1f02a50e98206 < 773fddf976d282ef059c36c575ddb81567acd6bc | affected |
| Linux | Linux | 2ea086e35c3d726a3bacd0a971c1f02a50e98206 < bdaab5c6538e250a9654127e688ecbbeb6f771d5 | affected |
| Linux | Linux | 2ea086e35c3d726a3bacd0a971c1f02a50e98206 < eb0378dde086363046ed3d7db7f126fc3f76fd70 | affected |
| Linux | Linux | 2ea086e35c3d726a3bacd0a971c1f02a50e98206 < 8be498fcbd5b07272f560b45981d4b9e5a2ad885 | affected |
| Linux | Linux | 2ea086e35c3d726a3bacd0a971c1f02a50e98206 < 529b121b00a6ee3c88fb3c01b443b2b81f686d48 | affected |
| Linux | Linux | 2ea086e35c3d726a3bacd0a971c1f02a50e98206 < 5282491fc49d5614ac6ddcd012e5743eecb6a67c | affected |
| Linux | Linux | 5.15 | affected |
| Linux | Linux | 0 < 5.15 | unaffected |
| Linux | Linux | 5.15.194 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.154 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.108 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.49 <= 6.12.* | unaffected |
| Linux | Linux | 6.16.9 <= 6.16.* | unaffected |
| Linux | Linux | 6.17 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/773fddf976d282ef059c36c575ddb81567acd6bc
- https://git.kernel.org/stable/c/bdaab5c6538e250a9654127e688ecbbeb6f771d5
- https://git.kernel.org/stable/c/eb0378dde086363046ed3d7db7f126fc3f76fd70
- https://git.kernel.org/stable/c/8be498fcbd5b07272f560b45981d4b9e5a2ad885
- https://git.kernel.org/stable/c/529b121b00a6ee3c88fb3c01b443b2b81f686d48
- https://git.kernel.org/stable/c/5282491fc49d5614ac6ddcd012e5743eecb6a67c
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.