Vulnerability Database

296,213

Total vulnerabilities in the database

CVE-2025-21844

In the Linux kernel, the following vulnerability has been resolved:

smb: client: Add check for next_buffer in receive_encrypted_standard()

Add check for the return value of cifs_buf_get() and cifs_small_buf_get() in receive_encrypted_standard() to prevent null pointer dereference.

  • Published: Mar 12, 2025
  • Updated: May 4, 2025
  • CVE: CVE-2025-21844
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWEs:

Software From Fixed in
linux / linux_kernel 5.15.150 5.15.150.x
linux / linux_kernel 5.10.211 5.10.211.x
linux / linux_kernel 6.14-rc1 6.14-rc1.x
linux / linux_kernel 6.14-rc2 6.14-rc2.x
linux / linux_kernel 6.14-rc3 6.14-rc3.x
linux / linux_kernel 6.13 6.13.5
linux / linux_kernel 6.1.69 6.1.130
linux / linux_kernel 6.6.8 6.6.80
linux / linux_kernel 6.7 6.12.17