Linux Kernel Vulnerability in ksmbd Affects Connection Handling
CVE-2025-38501

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 August 2025

What is CVE-2025-38501?

A vulnerability in the ksmbd component of the Linux kernel allows excessive connection attempts from clients with the same IP address. This situation can lead to resource exhaustion, preventing legitimate clients from establishing connections. The recent patch addresses this issue by limiting the number of repeated connections from the same IP, thereby enhancing connection management and improving overall network security.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 7e5d91d3e6c62a9755b36f29c35288f06c3cd86b

References

https://git.kernel.org/stable/c/cb092fc3a62972a4aa47c9fe3...

https://git.kernel.org/stable/c/fa1c47af4ff641cf9197ecdb1...

https://git.kernel.org/stable/c/7e5d91d3e6c62a9755b36f29c...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 16, 2025
Vulnerability Reserved
Apr 16, 2025