CVE-2025-38379

CVSS v2.0

6.1

Medium

Vector

AV:A/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux Kernel versions 6.16.0-rc3 and earlier

Description A warning occurred when reconnecting a channel in the SMB2 protocol. Specifically, a dummy tcon was passed to smb2 reconnect() with an uninitialized query interface, leading to an issue when attempting to queue a delayed work item on it. This was observed during reconnection attempts within the cifsiod workqueue.

Recommendations Linux Kernel versions prior to 6.16.0-rc3 should be updated.

Exploit

Fix

Access of Uninitialized Pointer

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-824

Related Identifiers

AZL-65780

BDU:2025-10788

CVE-2025-38379

MGASA-2025-0218

MGASA-2025-0219

OPENSUSE-SU-2026:20287-1

SUSE-SU-2026:0447-1

SUSE-SU-2026:0471-1

SUSE-SU-2026:0472-1

SUSE-SU-2026:0587-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20555-1

SUSE-SU-2026:20599-1

SUSE-SU-2026:20615-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

CVE-2025-38379

Weakness Enumeration

Related Identifiers

Affected Products

References · 1622