CVE-2025-68786

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: skip lock-range check on equal size to avoid size==0 underflow

When size equals the current i_size (including 0), the code used to call check_lock_range(filp, i_size, size - 1, WRITE), which computes size - 1 and can underflow for size==0. Skip the equal case.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf44158485826c076335d6860d35872271a83791d < 52fcbb92e0d3acfd1448b2a43b6595d540da5295affected
LinuxLinuxf44158485826c076335d6860d35872271a83791d < da29cd197246c85c0473259f1cad897d9d28faeaaffected
LinuxLinuxf44158485826c076335d6860d35872271a83791d < a6f4cfa3783804336491e0edcb250c25f9b59d33affected
LinuxLinuxf44158485826c076335d6860d35872271a83791d < 571204e4758a528fbd67330bd4b0dfbdafb33dd8affected
LinuxLinuxf44158485826c076335d6860d35872271a83791d < 5d510ac31626ed157d2182149559430350cf2104affected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux6.1.160 <= 6.1.*unaffected
LinuxLinux6.6.120 <= 6.6.*unaffected
LinuxLinux6.12.64 <= 6.12.*unaffected
LinuxLinux6.18.3 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References