CVE-2025-68786

Linux Kernel 5.15.0-6.1.159 6.2.0-6.6.119 6.7.0-6.12.63 6.13.0-6.18.2 - Denial of Service via Lock-Range Check Underflow

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: skip lock-range check on equal size to avoid size==0 underflow When size equals the current i_size (including 0), the code used to call check_lock_range(filp, i_size, size - 1, WRITE), which computes `size - 1` and can underflow for size==0. Skip the equal case.

References (5)

Core 5

Core References

Patch

https://git.kernel.org/stable/c/52fcbb92e0d3acfd1448b2a43b6595d540da5295

Patch

https://git.kernel.org/stable/c/da29cd197246c85c0473259f1cad897d9d28faea

Patch

https://git.kernel.org/stable/c/a6f4cfa3783804336491e0edcb250c25f9b59d33

Patch

https://git.kernel.org/stable/c/571204e4758a528fbd67330bd4b0dfbdafb33dd8

Patch

https://git.kernel.org/stable/c/5d510ac31626ed157d2182149559430350cf2104

Scores

EPSS 0.0005

EPSS Percentile 15.8%

Details

Status published

Products (16)

linux/Kernel 5.15.0 - 6.1.160linux

linux/Kernel 6.13.0 - 6.18.3linux

linux/Kernel 6.2.0 - 6.6.120linux

linux/Kernel 6.7.0 - 6.12.64linux

Linux/Linux < 5.15

Linux/Linux 5.15

Linux/Linux 6.1.160 - 6.1.*

Linux/Linux 6.12.64 - 6.12.*

Linux/Linux 6.18.3 - 6.18.*

Linux/Linux 6.19

... and 6 more

Published Jan 13, 2026

Tracked Since Feb 18, 2026