vulnerability

Debian: CVE-2025-21660: linux, linux-6.1 -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:N/I:N/A:C)	Jan 21, 2025	Feb 10, 2025	Mar 5, 2025

Severity

CVSS

(AV:L/AC:L/Au:S/C:N/I:N/A:C)

Published

Jan 21, 2025

Added

Feb 10, 2025

Modified

Mar 5, 2025

Description

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix unexpectedly changed path in ksmbd_vfs_kern_path_locked

When `ksmbd_vfs_kern_path_locked` met an error and it is not the last
entry, it will exit without restoring changed path buffer. But later this
buffer may be used as the filename for creation.

Solutions

debian-upgrade-linuxdebian-upgrade-linux-6-1

References

CVE-2025-21660
https://attackerkb.com/topics/CVE-2025-21660
DEBIAN-DSA-5860-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today