CVE-2025-39825
BaseFortify
Publication date: 2025-09-16
Last updated on: 2025-11-03
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | 6.1.153 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel's SMB client involves a race condition during the rename operation. When renaming a file, the process not only sends a rename request to the server but also closes deferred closes, waits for outstanding I/O to complete, and marks open handles as deleted. These steps increase the window for concurrent opens on the target file, potentially causing a race condition. The fix involves unhashing the dentry in advance to prevent any concurrent opens on the target file during the rename.
How can this vulnerability impact me? :
This vulnerability can lead to race conditions during file rename operations in the SMB client, which may cause unexpected behavior such as data corruption, inconsistent file states, or errors in file handling. This could affect system stability or data integrity when multiple processes access or rename files concurrently.