Symlink Resolution Issue in Linux Kernel Affects SMB Client Functionality
CVE-2025-38431

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 July 2025

What is CVE-2025-38431?

A vulnerability in the SMB client of the Linux kernel affects how symlinks are resolved. Users experienced failures with backup and copy tools when attempting to process directories containing symlink targets, causing operations to fail even if the symlink itself was not followed. The issue stems from the client’s inability to correctly parse certain symlink structures, disrupting standard functionality. The fix restores the expected behavior by ensuring that the lstat(2) and readlink(2) system calls succeed even when the symlink target cannot be resolved. This resolution helps maintain consistency for users relying on these operations.

Affected Version(s)

Linux 12b466eb52d926802b6898d2cb7e67386467f54a < 6ddaf7567080c7de2e0c99efca2ee1e6b79beea5

Linux 12b466eb52d926802b6898d2cb7e67386467f54a

Linux 6.14

References

https://git.kernel.org/stable/c/6ddaf7567080c7de2e0c99efc...

https://git.kernel.org/stable/c/ff8abbd248c1f52df0c321690...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 25, 2025
Vulnerability Reserved
Apr 16, 2025