CVE-2025-21944

ksmbd: fix bug on trap in smb2_lock

EPSS 0.1%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

01 Apr 2025Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix bug on trap in smb2_lock If lock count is greater than 1, flags could be old value. It should be checked with flags of smb_lock, not flags. It will cause bug-on trap from locks_free_lock in error handling routine.

Affected products

Linux · Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://git.kernel.org/stable/c/11e0e74e14f1832a95092f2c98ed3b99f57797ee https://git.kernel.org/stable/c/2b70e3ac79eacbdf32571f7af48dd81cdd957ca8 https://git.kernel.org/stable/c/8994f0ce8259f812b4f4a681d8298c6ff682efaa https://git.kernel.org/stable/c/dbcd7fdd86f77529210fe8978154a81cd479844c https://git.kernel.org/stable/c/e26e2d2e15daf1ab33e0135caf2304a0cfa2744b https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html