CVE-2025-38179

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the version that includes the fix for the max sge overflow in smb extract folioq to rdma()

Description: A vulnerability has been resolved in the Linux kernel related to the max sge overflow in smb extract folioq to rdma(). The issue is associated with a slab-out-of-bounds error in smb set sge, which can lead to a write of size 8 at a specific address. The problem was identified through a call trace that included functions such as dump stack lvl, print report, and kasan report. The vulnerability affects the cifs module and is related to the smbd post send iter and smbd send functions.

Recommendations: To resolve the issue, update the Linux kernel to a version that includes the fix for the max sge overflow in smb extract folioq to rdma(). As a temporary workaround, consider disabling the cifs module until a patch is available. Restrict access to the vulnerable smb set sge function to minimize the risk of exploitation. Avoid using the affected API endpoints related to the cifs module until the issue is resolved.