CVE-2025-22042
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
16/04/2025
Last modified:
06/04/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
ksmbd: add bounds check for create lease context<br />
<br />
Add missing bounds check for create lease context.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.15 (including) | 6.1.134 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.6.87 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.12.23 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.13 (including) | 6.13.11 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.14 (including) | 6.14.2 (excluding) |
| cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/60b7207893a8a06c78441934931a08fdad63f18e
- https://git.kernel.org/stable/c/629dd37acc336ad778979361c351e782053ea284
- https://git.kernel.org/stable/c/800c482c9ef5910f05e3a713943c67cc6c1d4939
- https://git.kernel.org/stable/c/9a1b6ea955e6c7b29939a6d98701202f9d9644ec
- https://git.kernel.org/stable/c/a41cd52f00907a040ca22c73d4805bb79b0d0972
- https://git.kernel.org/stable/c/bab703ed8472aa9d109c5f8c1863921533363dae
- https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html