smb: client: fix wrong index reference in smb2_compound_op()
CVE-2025-39975

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 15 October 2025

What is CVE-2025-39975?

In the Linux kernel, the following vulnerability has been resolved:

smb: client: fix wrong index reference in smb2_compound_op()

In smb2_compound_op(), the loop that processes each command's response uses wrong indices when accessing response bufferes.

This incorrect indexing leads to improper handling of command results. Also, if incorrectly computed index is greather than or equal to MAX_COMPOUND, it can cause out-of-bounds accesses.

Affected Version(s)

Linux 5ddcc9e92d54548219985ce4de88618fb53e14ec

Linux efe8db3ecaa40a8520dc9a54283dcecd82ceea9c

Linux 3681c74d342db75b0d641ba60de27bf73e16e66b < 093615fc76063ea08d454ba86677ce64c736e806

References

https://git.kernel.org/stable/c/ba7bcfd52c66dd1c2dfa5142a...

https://git.kernel.org/stable/c/bfb1e2aad1fecef8320fd7133...

https://git.kernel.org/stable/c/093615fc76063ea08d454ba86...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 15, 2025
Vulnerability Reserved
Apr 16, 2025

JSON