An issue was discovered in the Linux kernel before 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the relationship between the command payload size and the RFC1002 length specification, leading to an out-of-bounds read.
CPE | Name | Operator | Version |
---|---|---|---|
linux_kernel | ge | 5.16 | |
linux_kernel | lt | 6.1.36 | |
linux_kernel | ge | 5.15 | |
linux_kernel | lt | 5.15.121 | |
linux_kernel | ge | 6.2 | |
linux_kernel | lt | 6.3.10 |