CVE-2024-50283 ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp

🗓️ 19 Nov 2024 01:30:25Reported by LinuxType

CVE-2024-50283 ksmbd: fix slab-use-after-free in smb3_preauth_hash_rs

Reporter	Title	Published	Views	Family All 115
AstraLinux	Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15	3 May 202623:59	–	astralinux
BDU FSTEC	The vulnerability of the __handle_ksmbd_work() function in the fs/smb/server/server.c module of the Linux-based CIFS/SMB3 server, ksmbd server, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.	13 Jan 202500:00	–	bdu_fstec
Circl	CVE-2024-50283	19 Nov 202402:54	–	circl
CNNVD	Linux kernel 安全漏洞	19 Nov 202400:00	–	cnnvd
CVE	CVE-2024-50283	19 Nov 202401:30	–	cve
Debian	[SECURITY] [DLA 4008-1] linux-6.1 security update	3 Jan 202500:41	–	debian
Debian	[SECURITY] [DSA 5818-1] linux security update	24 Nov 202416:09	–	debian
Debian CVE	CVE-2024-50283	19 Nov 202401:30	–	debiancve
Tenable Nessus	Debian dla-4008 : linux-config-6.1 - security update	3 Jan 202500:00	–	nessus
Tenable Nessus	Debian dsa-5818 : affs-modules-6.1.0-21-4kc-malta-di - security update	24 Nov 202400:00	–	nessus

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/server.c"
    ],
    "versions": [
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "cb645064e0811053c94e86677f2e58ed29359d62",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "f7557bbca40d4ca8bb1c6c940ac6c95078bd0827",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "c6cdc08c25a868a08068dfc319fa9fce982b8e7f",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "1b6ad475d4ed577d34e0157eb507be00c588bf5c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0626e6641f6b467447c81dd7678a69c66f7746cf",
        "lessThan": "b8fc56fbca7482c1e5c0e3351c6ae78982e25ada",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/smb/server/server.c"
    ],
    "versions": [
      {
        "version": "5.15",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.15",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.174",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.117",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.61",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.11.8",
        "lessThanOrEqual": "6.11.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/cb645064e0811053c94e86677f2e58ed29359d62
git	www.git.kernel.org/stable/c/b8fc56fbca7482c1e5c0e3351c6ae78982e25ada
git	www.git.kernel.org/stable/c/1b6ad475d4ed577d34e0157eb507be00c588bf5c
git	www.git.kernel.org/stable/c/f7557bbca40d4ca8bb1c6c940ac6c95078bd0827
git	www.git.kernel.org/stable/c/c6cdc08c25a868a08068dfc319fa9fce982b8e7f

11 May 2026 20:49Current

EPSS0.0002