Lucene search

K

GoogleOSV:CVE-2024-26936

HistoryMay 01, 2024 - 6:15 a.m.

CVE-2024-26936

2024-05-0106:15:00

Google

osv.dev

1

linux kernel

cve-2024-26936

ksmbd vulnerability

buffer size validation

smb2_allocate_rsp_buf

AI Score

6.7

Confidence

Low

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate request buffer size in smb2_allocate_rsp_buf() The response buffer should be allocated in smb2_allocate_rsp_buf before validating request. But the fields in payload as well as smb2 header is used in smb2_allocate_rsp_buf(). This patch add simple buffer size validation to avoid potencial out-of-bounds in request buffer.

References

git.kernel.org/linus/17cf0c2794bdb6f39671265aa18aea5c22ee8c4a

git.kernel.org/stable/c/17cf0c2794bdb6f39671265aa18aea5c22ee8c4a

git.kernel.org/stable/c/21ff9d7d223c5c19cb4334009e4c0c83a2f4d674

git.kernel.org/stable/c/2c27a64a2bc47d9bfc7c3cf8be14be53b1ee7cb6

git.kernel.org/stable/c/5c20b242d4fed73a93591e48bfd9772e2322fb11

ubuntu.com/security/CVE-2024-26936

ubuntu.com/security/notices/USN-6893-1

ubuntu.com/security/notices/USN-6893-2

ubuntu.com/security/notices/USN-6893-3

ubuntu.com/security/notices/USN-6918-1

www.cve.org/CVERecord?id=CVE-2024-26936

AI Score

6.7

Confidence

Low

Related for OSV:CVE-2024-26936

debiancve1 cvelist1 vulnrichment1 cve1 redhatcve1 nvd1 ubuntucve1 osv12 nessus12 debian1 openvas14 ubuntu10 mageia2