Vulnerability in Linux Kernel's ksmbd Component
CVE-2025-38092

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
2 July 2025

What is CVE-2025-38092?

A vulnerability exists in the Linux kernel related to the ksmbd component, where the macro list_first_entry() fails to return NULL when the list is empty. Instead, it may return an invalid pointer, which can lead to security issues during operations that depend on list traversal. The resolution involves using list_first_entry_or_null() to properly validate the list state before accessing its elements, ensuring that any empty lists are handled safely.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 296cb5457cc6f4a754c4ae29855f8a253d52bcc6

Linux d54ab1520d43e95f9b2e22d7a05fc9614192e5a5 < 334da674b25fdb7a1a4d4b89dcd7795144fc7e11

Linux d73686367ad68534257cd88a36ca3c52cb8b81d8

References

https://git.kernel.org/stable/c/c78abb646ff823e7d22faad4c...
https://git.kernel.org/stable/c/334da674b25fdb7a1a4d4b89d...
https://git.kernel.org/stable/c/cb7e06e9736d73007dc8dab7b...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.