Usercopy Vulnerability in Linux Kernel CIFS Component
CVE-2025-38523

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 August 2025

What is CVE-2025-38523?

A usercopy vulnerability exists in the CIFS component of the Linux kernel, where improper handling of data in the smbd_response struct can lead to kernel memory exposure. This issue arises when the packet field of the smbd_response slab is not correctly marked as permissible for usercopy operations. When CONFIG_HARDENED_USERCOPY is enabled, attempts to copy data can trigger kernel crashes, presenting a serious stability and security risk. Fixing this vulnerability involves modifying parameters during slab creation to ensure proper permissions for the usercopy function in the affected areas.

Affected Version(s)

Linux ee4cdf7ba857a894ad1650d6ab77669cbbfa329e < 87dcc7e33fc3dcb8ed32333cec016528b5bb6ce4

Linux ee4cdf7ba857a894ad1650d6ab77669cbbfa329e

Linux ee4cdf7ba857a894ad1650d6ab77669cbbfa329e < 43e7e284fc77b710d899569360ea46fa3374ae22

References

https://git.kernel.org/stable/c/87dcc7e33fc3dcb8ed32333ce...

https://git.kernel.org/stable/c/f0dd353d47f7051afa98c6c60...

https://git.kernel.org/stable/c/43e7e284fc77b710d89956936...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 16, 2025
Vulnerability Reserved
Apr 16, 2025