CVE-2025-37778

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-37778
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-37778.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-37778
Downstream
Published
2025-05-01T13:07:16.472Z
Modified
2025-11-28T02:35:43.398075Z
Summary
ksmbd: Fix dangling pointer in krb_authenticate
Details

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: Fix dangling pointer in krb_authenticate

krbauthenticate frees sess->user and does not set the pointer to NULL. It calls ksmbdkrb5authenticate to reinitialise sess->user but that function may return without doing so. If that happens then smb2sesssetup, which calls krbauthenticate, will be accessing free'd memory when it later uses sess->user.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/37xxx/CVE-2025-37778.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0626e6641f6b467447c81dd7678a69c66f7746cf
Fixed
d5b554bc8d554ed6ddf443d3db2fad9f665cec10
Fixed
1db2451de23e98bc864c6a6e52aa0d82c91cb325
Fixed
6e30c0e10210c714f3d4453dc258d4abcc70364e
Fixed
e83e39a5f6a01a81411a4558a59a10f87aa88dd6
Fixed
1e440d5b25b7efccb3defe542a73c51005799a5f

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.15.0
Fixed
6.1.135
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.88
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.25
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.14.4