Null Pointer Dereference Vulnerability in Linux Kernel for ksmbd Product by Linux Foundation
CVE-2025-38191

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
4 July 2025

What is CVE-2025-38191?

A null pointer dereference vulnerability exists within the ksmbd component of the Linux kernel. When a client sets the PreviousSessionId during the Kerberos session setup, this can lead to a NULL pointer dereference. This error occurs because the user parameter remains unset, allowing a null value to be passed to the destroy_previous_session function. The issue is resolved by ensuring that the destroy_previous_session is invoked only after the user has been authenticated through the ksmbd_krb5_authenticate function, thus preventing the potential for system instability.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 281afc52e2961cd5dd8326ebc9c5bc40904c0468

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0902625a24eea7fdc187faa5d97df244d159dd6e

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1193486dffb7432a09f57f5d09049b4d4123538b

References

https://git.kernel.org/stable/c/281afc52e2961cd5dd8326ebc...
https://git.kernel.org/stable/c/0902625a24eea7fdc187faa5d...
https://git.kernel.org/stable/c/1193486dffb7432a09f57f5d0...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-38191 : Null Pointer Dereference Vulnerability in Linux Kernel for ksmbd Product by Linux Foundation