Linux Kernel Vulnerability in SMB3 Affecting CIFS Protocol
CVE-2025-38728

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
4 September 2025

What is CVE-2025-38728?

A vulnerability in the Linux kernel's SMB3 implementation has been identified, allowing for a slab out of bounds access during the mounting process with ksmbd. This issue arises from missing checks within the parse_server_interfaces function. If left unaddressed, it can potentially lead to serious memory safety issues, compromising the stability and security of systems utilizing this kernel version. It is crucial for users and administrators to apply appropriate patches to mitigate risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux fe856be475f7cf5ffcde57341d175ce9fd09434b < 9bdb8e98a0073c73ab3e6c631ec78877ceb64565

Linux fe856be475f7cf5ffcde57341d175ce9fd09434b

Linux fe856be475f7cf5ffcde57341d175ce9fd09434b < 8de33d4d72e8fae3502ec3850bd7b14e7c7328b6

References

https://git.kernel.org/stable/c/9bdb8e98a0073c73ab3e6c631...
https://git.kernel.org/stable/c/a0620e1525663edd8c4594f49...
https://git.kernel.org/stable/c/8de33d4d72e8fae3502ec3850...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.