Linux kernel
Moderate fix1 remedy
cpe:2.3:o:kernel:linux_kernel:*:*:*:*:*:*:*
Moderate fix1 remedy
Linux Kernel ksmbd Concurrent smb2 Tree Disconnect Use-After-Free Vulnerability
Vulnerability
A use-after-free vulnerability has been identified in the Linux kernel's ksmbd component, specifically related to concurrent SMB2 tree disconnection processes. This issue arises from a race condition that can be exploited when multiple disconnection requests are processed simultaneously, leading to undefined behavior.
Impact
Exploitation of this vulnerability can result in a use-after-free condition, potentially allowing for arbitrary code execution or memory corruption.
Reproduction
To reproduce this vulnerability, initiate concurrent SMB2 tree disconnection requests in the ksmbd component of the Linux kernel. This can be done by sending multiple disconnection requests at the same time, which will create a race condition and trigger the use-after-free vulnerability.
Remediation
Users can upgrade to the latest version of the Linux kernel where this vulnerability has been patched. The specific commit addressing this issue is 30210947a343b6b3ca13adc9bfc88e1543e16dd5.
Added: Sep 17, 2025, 3:39 PM
Updated: Sep 17, 2025, 3:39 PM
Vulnerability Rating
Custom Algorithm
spread
9.0impact
2.5exploitability
3.9remediation
7.7relevance
0.5threat
4.8urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.