CVE-2025-21660
Published: January 22, 2025Last modified: January 22, 2025
Description
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix unexpectedly changed path in ksmbd_vfs_kern_path_locked When `ksmbd_vfs_kern_path_locked` met an error and it is not the last entry, it will exit without restoring changed path buffer. But later this buffer may be used as the filename for creation.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.127-r0) |
| 25 LTS | linux-lts | Fixed (6.12.41-r0) | |
| Stream | linux-lts | Fixed (6.12.41-r0) |
References
- https://git.kernel.org/stable/c/13e41c58c74baa71f34c0830eaa3c29d53a6e964
- https://git.kernel.org/stable/c/2ac538e40278a2c0c051cca81bcaafc547d61372
- https://git.kernel.org/stable/c/51669f4af5f7959565b48e55691ba92fabf5c587
- https://git.kernel.org/stable/c/65b31b9d992c0fb0685c51a0cf09993832734fc4
- https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html