Linux Kernel ksmbd Component Deadlock Vulnerability Leading to Denial-of-Service

Vulnerability

A deadlock vulnerability has been identified in the Linux kernel's ksmbd component. This issue arises when multiple concurrent session setup requests are sent, potentially causing a denial-of-service condition. The vulnerability is present in systems with ksmbd enabled, and authentication is not required to exploit it.

Impact

Exploitation of this vulnerability can lead to a deadlock situation, causing the system to become unresponsive or unstable.

Added: Aug 2, 2025, 11:26 PM

Updated: Aug 2, 2025, 11:26 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.6

remediation

8.3

relevance

0.3

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.6

remediation

8.3

relevance

0.3

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ksmbd Component Deadlock Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating