Volerion logoVolerion
Volerion logoVolerion

Linux Kernel ksmbd Null Pointer Dereference Vulnerability in Encryption Key Generation

Vulnerability

A null pointer dereference vulnerability has been identified in the Linux kernel's ksmbd component, specifically within the encryption key generation process. This issue arises when a client sends two session setups using Kerberos authentication, which can lead to a null pointer dereference error. The vulnerability is present in several versions of the Linux kernel.

Impact

Exploitation of this vulnerability causes a null pointer dereference, which can lead to a crash of the ksmbd service, causing a denial of service.

Reproduction

To reproduce this vulnerability, send two session setup requests with Kerberos authentication to a server running ksmbd. The first session setup should be processed normally, but the second one will trigger the null pointer dereference error in the 'generate_encryptionkey' function, causing the ksmbd service to crash.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been patched.

Added: Aug 19, 2025, 6:48 PM
Updated: Aug 19, 2025, 6:48 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
4.3
remediation
7.7
relevance
0.4
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.