CVE-2025-68817

Summary

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix use-after-free in ksmbd_tree_connect_put under concurrency

Under high concurrency, A tree-connection object (tcon) is freed on a disconnect path while another path still holds a reference and later executes *_put()/write on it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxdd45db4d9bbc8f122a9b4db5ce94ae29fcf03d3c < 446beed646b2e426dd53d27358365f8678e1dd01affected
LinuxLinux7b58ee8d0b91359554cf219cd4f33872ea2afd66 < d092de8a26c952379ded8e6b0bda31d89befac1aaffected
LinuxLinux33b235a6e6ebe0f05f3586a71e8d281d00f71e2e < d64977495e44855f2b28d8ce56107c963a7a50e4affected
LinuxLinux33b235a6e6ebe0f05f3586a71e8d281d00f71e2e < 21a3d01fc6db5129f81edb0ab7cb94fd758bcbeaaffected
LinuxLinux33b235a6e6ebe0f05f3586a71e8d281d00f71e2e < 063cbbc6f595ea36ad146e1b7d2af820894beb21affected
LinuxLinux33b235a6e6ebe0f05f3586a71e8d281d00f71e2e < b39a1833cc4a2755b02603eec3a71a85e9dff926affected
LinuxLinux5.15.145 < 5.15.199affected
LinuxLinux6.1.71 < 6.1.160affected
LinuxLinux6.6affected
LinuxLinux0 < 6.6unaffected
LinuxLinux5.15.199 <= 5.15.*unaffected
LinuxLinux6.1.160 <= 6.1.*unaffected
LinuxLinux6.6.120 <= 6.6.*unaffected
LinuxLinux6.12.64 <= 6.12.*unaffected
LinuxLinux6.18.3 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References