CVE-2025-38191

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-38191
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-38191.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-38191
Downstream
Related
Published
2025-07-04T13:37:15.736Z
Modified
2025-11-28T02:35:52.030789Z
Summary
ksmbd: fix null pointer dereference in destroy_previous_session
Details

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix null pointer dereference in destroyprevioussession

If client set ->PreviousSessionId on kerberos session setup stage, NULL pointer dereference error will happen. Since sess->user is not set yet, It can pass the user argument as NULL to destroyprevioussession. sess->user will be set in ksmbdkrb5authenticate(). So this patch move calling destroyprevioussession() after ksmbdkrb5authenticate().

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/38xxx/CVE-2025-38191.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0626e6641f6b467447c81dd7678a69c66f7746cf
Fixed
281afc52e2961cd5dd8326ebc9c5bc40904c0468
Fixed
0902625a24eea7fdc187faa5d97df244d159dd6e
Fixed
1193486dffb7432a09f57f5d09049b4d4123538b
Fixed
076f1adefb9837977af7ed233883842ddc446644
Fixed
7ac5b66acafcc9292fb935d7e03790f2b8b2dc0e

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.15.0
Fixed
6.1.142
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.95
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.35
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.15.4