CVE-2025-22041

HIGH

Linux Kernel - Use-After-Free in ksmbd_sessions_deregister

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbd_sessions_deregister() In multichannel mode, UAF issue can occur in session_deregister when the second channel sets up a session through the connection of the first channel. session that is freed through the global session table can be accessed again through ->sessions of connection.

References (7)

Core 7

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Patch

https://git.kernel.org/stable/c/f0eb3f575138b816da74697bd506682574742fcd

Patch

https://git.kernel.org/stable/c/a8a8ae303a8395cbac270b5b404d85df6ec788f8

Patch

https://git.kernel.org/stable/c/ca042cc0e4f9e0d2c8f86dd67e4b22f30a516a9b

Patch

https://git.kernel.org/stable/c/8ed0e9d2f410f63525afb8351181eea36c80bcf1

Patch

https://git.kernel.org/stable/c/33cc29e221df7a3085ae413e8c26c4e81a151153

Patch

https://git.kernel.org/stable/c/15a9605f8d69dc85005b1a00c31a050b8625e1aa

Scores

CVSS v3 8.8

EPSS 0.0056

EPSS Percentile 42.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-416

Status published

Products (20)

linux/Kernel 5.15.0 - 6.1.134linux

linux/Kernel 6.13.0 - 6.13.11linux

linux/Kernel 6.14.0 - 6.14.2linux

linux/Kernel 6.2.0 - 6.6.87linux

linux/Kernel 6.7.0 - 6.12.23linux

Linux/Linux < 5.15

Linux/Linux 0626e6641f6b467447c81dd7678a69c66f7746cf - 15a9605f8d69dc85005b1a00c31a050b8625e1aa

Linux/Linux 0626e6641f6b467447c81dd7678a69c66f7746cf - 33cc29e221df7a3085ae413e8c26c4e81a151153

Linux/Linux 0626e6641f6b467447c81dd7678a69c66f7746cf - 8ed0e9d2f410f63525afb8351181eea36c80bcf1

Linux/Linux 0626e6641f6b467447c81dd7678a69c66f7746cf - a8a8ae303a8395cbac270b5b404d85df6ec788f8

... and 10 more

Published Apr 16, 2025

Tracked Since Feb 18, 2026