CVE-2025-39942

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-39942
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39942.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-39942
Downstream
Published
2025-10-04T07:31:04.810Z
Modified
2026-05-18T05:57:29.419706914Z
Summary
ksmbd: smbdirect: verify remaining_data_length respects max_fragmented_recv_size
Details

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: smbdirect: verify remainingdatalength respects maxfragmentedrecv_size

This is inspired by the check for dataoffset + datalength.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/39xxx/CVE-2025-39942.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
2ea086e35c3d726a3bacd0a971c1f02a50e98206
Fixed
196a3a7676d726ee67621ea2bf3b7815ac2685b4
Fixed
d3cb3f209d35c44b7ee74f77ed27ebb28995b9ce
Fixed
9644798294c7287e65a7b26e35aa6d2ce3345bcc
Fixed
c64b915bb3d9339adcae5db4be2c35ffbef5e615
Fixed
e1868ba37fd27c6a68e31565402b154beaa65df0

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39942.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.15.0
Fixed
6.1.154
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.108
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.49
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.16.9

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-39942.json"