Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2_lock If smb_lock->zero_len has value, ->llist of smb_lock is not delete and flock is old one. It will cause use-after-free on error handling routine.

INFO

Published Date :

2025-04-01T15:41:08.471Z

Last Modified :

2025-11-03T19:39:45.983Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-21945 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-21945.

URL Resource
https://git.kernel.org/stable/c/410ce35a2ed6d0e114132bba29af49b69880c8c7 cve-icon cve-icon
https://git.kernel.org/stable/c/636e021646cf9b52ddfea7c809b018e91f2188cb cve-icon cve-icon
https://git.kernel.org/stable/c/84d2d1641b71dec326e8736a749b7ee76a9599fc cve-icon cve-icon
https://git.kernel.org/stable/c/8573571060ca466cbef2c6f03306b2cc7b883506 cve-icon cve-icon
https://git.kernel.org/stable/c/a0609097fd10d618aed4864038393dd75131289e cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025040136-CVE-2025-21945-d791@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-21945 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-21945 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact