CVE-2025-68246

Linux Kernel - Denial of Service via ksmbd Per-IP Connection Limit Bypass

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: close accepted socket when per-IP limit rejects connection When the per-IP connection limit is exceeded in ksmbd_kthread_fn(), the code sets ret = -EAGAIN and continues the accept loop without closing the just-accepted socket. That leaks one socket per rejected attempt from a single IP and enables a trivial remote DoS. Release client_sk before continuing. This bug was found with ZeroPath.

References (5)

Core 5

Core References

Patch

https://git.kernel.org/stable/c/7a3c7154d5fc05956a8ad9e72ecf49e21555bfca

Patch

https://git.kernel.org/stable/c/5746b2a0f5eb3d79667b3c51fe849bd62464220e

Patch

https://git.kernel.org/stable/c/4587a7826be1ae0190dba10ff70b46bb0e3bc7d3

Patch

https://git.kernel.org/stable/c/35521b5a7e8a184548125f4530552101236dcda1

Patch

https://git.kernel.org/stable/c/98a5fd31cbf72d46bf18e50b3ab0ce86d5f319a9

Scores

EPSS 0.0004

EPSS Percentile 13.2%

Details

Status published

Products (16)

linux/Kernel 5.15.0 - 6.1.159linux

linux/Kernel 6.13.0 - 6.17.9linux

linux/Kernel 6.2.0 - 6.6.117linux

linux/Kernel 6.7.0 - 6.12.59linux

Linux/Linux < 5.15

Linux/Linux 0626e6641f6b467447c81dd7678a69c66f7746cf - 35521b5a7e8a184548125f4530552101236dcda1

Linux/Linux 0626e6641f6b467447c81dd7678a69c66f7746cf - 4587a7826be1ae0190dba10ff70b46bb0e3bc7d3

Linux/Linux 0626e6641f6b467447c81dd7678a69c66f7746cf - 5746b2a0f5eb3d79667b3c51fe849bd62464220e

Linux/Linux 0626e6641f6b467447c81dd7678a69c66f7746cf - 7a3c7154d5fc05956a8ad9e72ecf49e21555bfca

Linux/Linux 0626e6641f6b467447c81dd7678a69c66f7746cf - 98a5fd31cbf72d46bf18e50b3ab0ce86d5f319a9

... and 6 more

Published Dec 16, 2025

Tracked Since Feb 18, 2026