CVE-2025-38437 ksmbd: fix potential use-after-free in oplock/lease break ack

🗓️ 25 Jul 2025 15:27:16Reported by LinuxType

Fixed potential use-after-free in ksmbd during oplock and lease break acknowledgment process.

Reporter	Title	Published	Views	Family All 138
AstraLinux	Astra Linux - уязвимость в linux-5.10, linux-6.1	20 May 202605:53	–	astralinux
BDU FSTEC	The vulnerability of the ksmbd_iovpin_rsp() function in the ksmbd component of the Linux operating system allows a attacker to cause a service failure.	30 Jul 202500:00	–	bdu_fstec
CBLMariner	CVE-2025-38437 affecting package kernel for versions less than 6.6.104.2-1	1 Oct 202519:21	–	cbl_mariner
Circl	CVE-2025-38437	25 Jul 202516:24	–	circl
CNNVD	Linux kernel 安全漏洞	25 Jul 202500:00	–	cnnvd
CVE	CVE-2025-38437	25 Jul 202515:27	–	cve
Debian	[SECURITY] [DLA 4328-1] linux-6.1 security update	13 Oct 202509:16	–	debian
Debian	[SECURITY] [DSA 5973-1] linux security update	12 Aug 202519:07	–	debian
Debian	[SECURITY] [DSA 5975-1] linux security update	13 Aug 202510:59	–	debian
Debian CVE	CVE-2025-38437	25 Jul 202515:27	–	debiancve

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/smb2pdu.c"
    ],
    "versions": [
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "e38ec88a2b42c494601b1213816d75f0b54d9bf0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "97c355989928a5f60b228ef5266c1be67a46cdf9",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "815f1161d6dbc4c54ccf94b7d3fdeab34b4d7477",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "8106adc21a2270c16abf69cd74ccd7c79c6e7acd",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "50f930db22365738d9387c974416f38a06e8057e",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/smb2pdu.c"
    ],
    "versions": [
      {
        "version": "5.15",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.15",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.146",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.99",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.39",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.15.7",
        "lessThanOrEqual": "6.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.16",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/815f1161d6dbc4c54ccf94b7d3fdeab34b4d7477
git	www.git.kernel.org/stable/c/e38ec88a2b42c494601b1213816d75f0b54d9bf0
git	www.git.kernel.org/stable/c/97c355989928a5f60b228ef5266c1be67a46cdf9
git	www.git.kernel.org/stable/c/8106adc21a2270c16abf69cd74ccd7c79c6e7acd
git	www.git.kernel.org/stable/c/50f930db22365738d9387c974416f38a06e8057e

11 May 2026 21:27Current

EPSS0.00071