Primary

Context

Linux Kernel ksmbd NULL Pointer Dereference Vulnerability in smb2_get_info_filesystem

Vulnerability

Patched

A NULL pointer dereference vulnerability has been identified in the Linux kernel's ksmbd component, specifically within the smb2_get_info_filesystem function. This issue arises when the share's path is NULL, leading to a crash. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability causes a NULL pointer dereference, leading to a crash of the ksmbd service.

Reproduction

The vulnerability can be reproduced by accessing a share where the share's path is NULL. This can be done by configuring a share in ksmbd without a valid path, which will trigger the NULL pointer dereference when the smb2_get_info_filesystem function is called.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been patched. Instructions for upgrading can be found in the official Linux kernel documentation.

Added: Sep 18, 2025, 2:47 PM

Updated: Sep 18, 2025, 2:47 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

0.5

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

0.5

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ksmbd NULL Pointer Dereference Vulnerability in smb2_get_info_filesystem

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating