CVE-2025-22043

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: add bounds check for durable handle context

Add missing bounds check for durable handle context.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
LinuxCNA
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
VendorProductVersion
linuxlinux_kernel
5.15 ≤
𝑥
< 6.6.87
linuxlinux_kernel
6.7 ≤
𝑥
< 6.12.23
linuxlinux_kernel
6.13 ≤
𝑥
< 6.13.11
linuxlinux_kernel
6.14 ≤
𝑥
< 6.14.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
not-affected
bullseye (security)
5.10.244-1
fixed
bookworm
vulnerable
bookworm (security)
vulnerable
trixie
6.12.57-1
fixed
trixie (security)
6.12.48-1
fixed
forky
6.17.9-1
fixed
sid
6.17.10-1
fixed
References
https://git.kernel.org/stable/c/1107b9ed92194603593c51829a3887812ae9e806
https://git.kernel.org/stable/c/29b946714d6aa77de54c71243bba39469ac43ef2
https://git.kernel.org/stable/c/542027e123fc0bfd61dd59e21ae0ee4ef2101b29
https://git.kernel.org/stable/c/8d4848c45943c9cf5e86142fd7347efa97f497db
https://git.kernel.org/stable/c/f0db3d9d416e332a0d6f045a1509539d3a4cd898