-

CVE-2025-38561

EPSS 0.04%
Veröffentlicht 19.08.2025 17:15:32
Zuletzt bearbeitet 10.10.2025 16:15:51
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix Preauh_HashValue race condition

If client send multiple session setup requests to ksmbd,
Preauh_HashValue race condition could happen.
There is no need to free sess->Preauh_HashValue at session setup phase.
It can be freed together with session at connection termination phase.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < fbf5c0845ed15122a770bca9be1d9b60b470d3aa

Version 0626e6641f6b467447c81dd7678a69c66f7746cf

Status affected

Version < b69fd87076daa66f3d186bd421a7b0ee0cb45829

Version 0626e6641f6b467447c81dd7678a69c66f7746cf

Status affected

Version < edeecc7871e8fc0878d53ce286c75040a0e38f6c

Version 0626e6641f6b467447c81dd7678a69c66f7746cf

Status affected

Version < 7d7c0c5304c88bcbd7a85e9bcd61d27e998ba5fc

Version 0626e6641f6b467447c81dd7678a69c66f7746cf

Status affected

Version < 6613887da1d18dd2ecfd6c6148a873c4d903ebdc

Version 0626e6641f6b467447c81dd7678a69c66f7746cf

Status affected

Version < 44a3059c4c8cc635a1fb2afd692d0730ca1ba4b6

Version 0626e6641f6b467447c81dd7678a69c66f7746cf

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.15

Status affected

Version < 5.15

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.148

Status unaffected

Version <= 6.6.*

Version 6.6.102

Status unaffected

Version <= 6.12.*

Version 6.12.42

Status unaffected

Version <= 6.15.*

Version 6.15.10

Status unaffected

Version <= 6.16.*

Version 6.16.1

Status unaffected

Version <= *

Version 6.17

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.089

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/44a3059c4c8cc635a1fb2afd692d0730ca1ba4b6

https://git.kernel.org/stable/c/6613887da1d18dd2ecfd6c6148a873c4d903ebdc

https://git.kernel.org/stable/c/7d7c0c5304c88bcbd7a85e9bcd61d27e998ba5fc

https://git.kernel.org/stable/c/b69fd87076daa66f3d186bd421a7b0ee0cb45829

https://git.kernel.org/stable/c/edeecc7871e8fc0878d53ce286c75040a0e38f6c

https://git.kernel.org/stable/c/fbf5c0845ed15122a770bca9be1d9b60b470d3aa

https://www.zerodayinitiative.com/advisories/ZDI-25-916/

https://nvd.nist.gov/vuln/detail/CVE-2025-38561

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-38561

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-38561

EUVD