Lucene search

CVE-2024-35866 smb: client: fix potential UAF in cifs_dump_full_key()

🗓️ 19 May 2024 08:24:34Reported by LinuxType

Fix potential UAF in cifs_dump_full_key() in Linux kernel

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 54
Vulnrichment	CVE-2024-35866 smb: client: fix potential UAF in cifs_dump_full_key()	19 May 202408:34	–	vulnrichment
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2025-938)	14 Apr 202500:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2024-35866	5 Mar 202500:00	–	nessus
Tenable Nessus	Debian dsa-5900 : affs-modules-6.1.0-28-4kc-malta-di - security update	13 Apr 202500:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6893-3)	23 Jul 202400:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6893-2)	16 Jul 202400:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6918-1)	26 Jul 202400:00	–	nessus
Tenable Nessus	Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6893-1)	11 Jul 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2135-1)	22 Jun 202400:00	–	nessus
Tenable Nessus	RHEL 9 : kernel (RHSA-2024:9315)	12 Nov 202400:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/client/ioctl.c"
    ],
    "versions": [
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "d798fd98e3563027c5162259ead517057d6fa794",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "f4a60d360d9114b5085701a3702a0102b0d6d846",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "10e17ca4000ec34737bde002a13435c38ace2682",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "3103163ccd3be4adcfa37e15608fb497be044113",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
        "lessThan": "58acd1f497162e7d282077f816faa519487be045",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/client/ioctl.c"
    ],
    "versions": [
      {
        "version": "5.15.181",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.132",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.26",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.8.5",
        "lessThanOrEqual": "6.8.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.9",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/10e17ca4000ec34737bde002a13435c38ace2682
git	www.git.kernel.org/stable/c/58acd1f497162e7d282077f816faa519487be045
git	www.git.kernel.org/stable/c/3103163ccd3be4adcfa37e15608fb497be044113
git	www.git.kernel.org/stable/c/f4a60d360d9114b5085701a3702a0102b0d6d846
git	www.git.kernel.org/stable/c/d798fd98e3563027c5162259ead517057d6fa794

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 May 2024 08:34Current

6.5Medium risk

Vulners AI Score6.5

EPSS0.00047