Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbd_sessions_deregister() In multichannel mode, UAF issue can occur in session_deregister when the second channel sets up a session through the connection of the first channel. session that is freed through the global session table can be accessed again through ->sessions of connection.

INFO

Published Date :

2025-04-16T14:11:58.250Z

Last Modified :

2026-04-02T08:39:30.200Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-22041 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-22041.

URL Resource
https://git.kernel.org/stable/c/15a9605f8d69dc85005b1a00c31a050b8625e1aa cve-icon cve-icon
https://git.kernel.org/stable/c/33cc29e221df7a3085ae413e8c26c4e81a151153 cve-icon cve-icon
https://git.kernel.org/stable/c/8ed0e9d2f410f63525afb8351181eea36c80bcf1 cve-icon cve-icon
https://git.kernel.org/stable/c/a8a8ae303a8395cbac270b5b404d85df6ec788f8 cve-icon cve-icon
https://git.kernel.org/stable/c/ca042cc0e4f9e0d2c8f86dd67e4b22f30a516a9b cve-icon cve-icon
https://git.kernel.org/stable/c/f0eb3f575138b816da74697bd506682574742fcd cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html cve-icon
https://lore.kernel.org/linux-cve-announce/2025041600-CVE-2025-22041-6dbd@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-22041 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-22041 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact