CVE-2025-68806
- Source
- https://cve.org/CVERecord?id=CVE-2025-68806
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68806.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-68806
- Downstream
- Related
- Published
- 2026-01-13T15:29:13.797Z
- Modified
- 2026-03-12T04:30:03.684535Z
- Summary
- ksmbd: fix buffer validation by including null terminator size in EA length
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix buffer validation by including null terminator size in EA length
The smb2setea function, which handles Extended Attributes (EA), was performing buffer validation checks that incorrectly omitted the size of the null terminating character (+1 byte) for EA Name. This patch fixes the issue by explicitly adding '+ 1' to EaNameLength where the null terminator is expected to be present in the buffer, ensuring the validation accurately reflects the total required buffer size.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68806.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/6dc8cf6e7998ef7aeb9383a4c2904ea5d22fa2e4
- https://git.kernel.org/stable/c/95d7a890e4b03e198836d49d699408fd1867cb55
- https://git.kernel.org/stable/c/a28a375a5439eb474e9f284509a407efb479c925
- https://git.kernel.org/stable/c/cae52c592a07e1d3fa3338a5f064a374a5f26750
- https://git.kernel.org/stable/c/d26af6d14da43ab92d07bc60437c62901dc522e6
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68806.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68806
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd070c4dd2a5bed4e9832eec5b6c029c7d14892eaFixedcae52c592a07e1d3fa3338a5f064a374a5f26750
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0ba5439d9afa2722e7728df56f272c89987540a4Fixeda28a375a5439eb474e9f284509a407efb479c925Fixedd26af6d14da43ab92d07bc60437c62901dc522e6Fixed6dc8cf6e7998ef7aeb9383a4c2904ea5d22fa2e4Fixed95d7a890e4b03e198836d49d699408fd1867cb55
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedbb5bf157b5be1643cccc7cbbe57fcdef9ae52c2cLast affected1a13ecb96230e8b7b91967e292836f7b01ec8111Last affected404e7c01e16288b5e0171d1d8fd3328e806d0794
Linux / Kernel
Package
- Name
- Kernel