5 matches found
kernel: smb: client: fix TCP timers deadlock after rmmod
REJECTED CVE A vulnerability was suspected in the Linux kernel's SMB client module related to TCP timers and potential deadlocks after module removal rmmod cifs. The issue stemmed from incorrect manual manipulation of sk-sknetrefcnt, which led to TCP timers not being properly cleared, causing...
CVE-2025-21844
CVE-2025-21844 affects the Linux kernel SMB client path. The vulnerability could allow a NULL pointer dereference in the receive_encrypted_standard() path due to missing checks, which could crash the kernel. The fix adds checks for the next_buffer in receive_encrypted_standard() and validates the...
CVE-2025-21844 smb: client: Add check for next_buffer in receive_encrypted_standard()
In the Linux kernel, the following vulnerability has been resolved: smb: client: Add check for nextbuffer in receiveencryptedstandard Add check for the return value of cifsbufget and cifssmallbufget in receiveencryptedstandard to prevent null pointer dereference...
CVE-2025-21725
CVE-2025-21725 concerns the Linux kernel CIFS/SMB client. The issue arises when NETWORK_INTERFACE_INFO::LinkSpeed is not guaranteed to be set by the server, potentially causing an oops (divide error) in the cifs client path. The provided connected documents specify the fix as: fix by setting cifs...
kernel: smb: client: fix potential UAF in smb2_is_valid_oplock_break()
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2isvalidoplockbreak Skip sessions that are being teared down status == SESEXITING to avoid UAF...