-

CVE-2025-40084

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: transport_ipc: validate payload size before reading handle

handle_response() dereferences the payload as a 4-byte handle without
verifying that the declared payload size is at least 4 bytes. A malformed
or truncated message from ksmbd.mountd can lead to a 4-byte read past the
declared payload size. Validate the size before dereferencing.

This is a minimal fix to guard the initial handle read.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
Produkt Linux
Default Statusunaffected
Version < a02e432d5130da4c723aabe1205bac805889fdb2
Version 0626e6641f6b467447c81dd7678a69c66f7746cf
Status affected
Version < 2dc125f5da134c0915a840b62565c60a595673dd
Version 0626e6641f6b467447c81dd7678a69c66f7746cf
Status affected
Version < 898d527ed94c19980a4d848f10057f1fed578ffb
Version 0626e6641f6b467447c81dd7678a69c66f7746cf
Status affected
Version < 867ffd9d67285612da3f0498ca618297f8e41f01
Version 0626e6641f6b467447c81dd7678a69c66f7746cf
Status affected
Version < 6f40e50ceb99fc8ef37e5c56e2ec1d162733fef0
Version 0626e6641f6b467447c81dd7678a69c66f7746cf
Status affected
HerstellerLinux
Produkt Linux
Default Statusaffected
Version 5.15
Status affected
Version < 5.15
Version 0
Status unaffected
Version <= 6.1.*
Version 6.1.158
Status unaffected
Version <= 6.6.*
Version 6.6.115
Status unaffected
Version <= 6.12.*
Version 6.12.56
Status unaffected
Version <= 6.17.*
Version 6.17.6
Status unaffected
Version <= *
Version 6.18
Status unaffected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.05% 0.134
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String