CVE-2025-37775

EUVD-2025-13039
In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix the warning from __kernel_write_iter

[ 2110.972290] ------------[ cut here ]------------
[ 2110.972301] WARNING: CPU: 3 PID: 735 at fs/read_write.c:599 __kernel_write_iter+0x21b/0x280

This patch doesn't allow writing to directory.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
5.15 ≤
𝑥
< 6.1.135
linuxlinux_kernel
6.2 ≤
𝑥
< 6.6.88
linuxlinux_kernel
6.7 ≤
𝑥
< 6.12.25
linuxlinux_kernel
6.13 ≤
𝑥
< 6.14.4
linuxlinux_kernel
6.15:rc1
linuxlinux_kernel
6.15:rc2
debiandebian_linux
11.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.159-1
fixed
bookworm (security)
6.1.162-1
fixed
bullseye
5.10.223-1
not-affected
bullseye (security)
5.10.249-1
fixed
forky
6.18.15-1
fixed
sid
6.18.15-1
fixed
trixie
6.12.63-1
fixed
trixie (security)
6.12.73-1
fixed
linux-6.1
bullseye (security)
6.1.162-1~deb11u1
fixed
References
https://git.kernel.org/stable/c/1ed343481ba6911178bc5ca7a51be319eafcc747
https://git.kernel.org/stable/c/2a879da5c34a1e5d971e815d5b30f27eb6d69efc
https://git.kernel.org/stable/c/44079e544c9f6e3e9fb43a16ddf8b08cf686d657
https://git.kernel.org/stable/c/b37f2f332b40ad1c27f18682a495850f2f04db0a
https://git.kernel.org/stable/c/b7ce8db490286c2e009758fa1416d66aeb333614
https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html