Back to search
CVE-2025-39943
Published: Oct 4, 2025
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: validate data_offset and data_length field of smb_direct_data_transfer If data_offset and data_length of smb_direct_data_transfer struct are invalid, out of bounds issue could happen. This patch validate data_offset and data_length field in recv_done.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 2ea086e35c3d726a3bacd0a971c1f02a50e98206 - < 773fddf976d282ef059c36c575ddb81567acd6bcaffected 2ea086e35c3d726a3bacd0a971c1f02a50e98206 - < bdaab5c6538e250a9654127e688ecbbeb6f771d5affected 2ea086e35c3d726a3bacd0a971c1f02a50e98206 - < eb0378dde086363046ed3d7db7f126fc3f76fd70affected 2ea086e35c3d726a3bacd0a971c1f02a50e98206 - < 8be498fcbd5b07272f560b45981d4b9e5a2ad885affected 2ea086e35c3d726a3bacd0a971c1f02a50e98206 - < 529b121b00a6ee3c88fb3c01b443b2b81f686d48+1 more versions |
Linux | Linux | affected 5.15unaffected 0 - < 5.15unaffected 5.15.194 - <= 5.15.*unaffected 6.1.154 - <= 6.1.*unaffected 6.6.108 - <= 6.6.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now