CVE-2025-68263 is a Linux kernel vulnerability affecting the in-kernel SMB server (ksmbd). It involves a race condition in ipc_msg_send_request that can lead to a kernel use-after-free (UAF). The issue arises when the generic-netlink handler writes a response while another thread frees the same buffer. A patch addresses this by taking the global ipc_msg_table_lock during inspection, removal, and freeing of reply entries. The CVE entry has been published, and the fix is available upstream. This tag covers discussions about the vulnerability, its impact on kernel security, and the patch that closes the race window.
-
A new Linux-kernel patch closes a narrow but dangerous race in the in‑kernel SMB server (ksmbd) that could lead to a kernel use‑after‑free (UAF) in ipc_msg_send_request. The upstream fix changes how ksmbd validates and frees generic‑netlink reply buffers by taking the global ipc_msg_table_lock...