CVE-2025-38561

Advisory lineage Upstream: 0 Downstream: 26

Downstream

DEBIAN-CVE-2025-38561 DLA-4328-1 LSN-0118-1 MGASA-2025-0234 MGASA-2025-0235 UBUNTU-CVE-2025-38561

Analyzed

Published: 19 Aug 2025, 17:02

Last modified:11 May 2026, 21:30

Vulnerability Summary

Overall Risk (default)

medium

34/100

CVSS Score

8.5 HIGH

v3.1 (cve.org)

EPSS Score

0.07% LOW

0% probability +0.04%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

19 Aug 2025, 17:02

Published

Vulnerability first disclosed

11 May 2026, 21:30

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix Preauh_HashValue race condition If client send multiple session setup requests to ksmbd, Preauh_HashValue race condition could happen. There is no need to free sess->Preauh_HashValue at session setup phase. It can be freed together with session at connection termination phase.

CVSS Metrics

v3.1•HIGH•Score: 8.5CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
v3.1•MEDIUM•Score: 4.7CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.07%• Percentile: 20%

Techniques & Countermeasures

CWE-362•Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

Affected Systems

debian•debian_linux
11.0
linux•linux
≥ 0626e6641f6b467447c81dd7678a69c66f7746cf, < fbf5c0845ed15122a770bca9be1d9b60b470d3aa | ≥ 0626e6641f6b467447c81dd7678a69c66f7746cf, < b69fd87076daa66f3d186bd421a7b0ee0cb45829 | ≥ 0626e6641f6b467447c81dd7678a69c66f7746cf, < edeecc7871e8fc0878d53ce286c75040a0e38f6c | ≥ 0626e6641f6b467447c81dd7678a69c66f7746cf, < 7d7c0c5304c88bcbd7a85e9bcd61d27e998ba5fc | ≥ 0626e6641f6b467447c81dd7678a69c66f7746cf, < 6613887da1d18dd2ecfd6c6148a873c4d903ebdc | ≥ 0626e6641f6b467447c81dd7678a69c66f7746cf, < 44a3059c4c8cc635a1fb2afd692d0730ca1ba4b6 | 5.15
linux•linux_kernel
≥ 5.15, < 6.1.148 | ≥ 6.2, < 6.6.102 | ≥ 6.7, < 6.12.42 | ≥ 6.13, < 6.15.10 | ≥ 6.16, < 6.16.1