cve 2025 22043

CVE-2025-22043 is a medium-severity Linux kernel vulnerability in the ksmbd in-kernel SMB server. The fix adds a bounds check for durable handle context to prevent potential exploitation. Microsoft's Azure Linux includes this open-source library and is therefore potentially affected, but defenders should treat Azure Linux images as confirmed carriers while performing artifact-level discovery across other Microsoft products. The vulnerability highlights cross-product exposure risks and the need for thorough artifact scanning beyond official advisories.