CVE-2025-40084

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ksmbd: transport_ipc: validate payload size before reading handle<br /> <br /> handle_response() dereferences the payload as a 4-byte handle without<br /> verifying that the declared payload size is at least 4 bytes. A malformed<br /> or truncated message from ksmbd.mountd can lead to a 4-byte read past the<br /> declared payload size. Validate the size before dereferencing.<br /> <br /> This is a minimal fix to guard the initial handle read.