Lucene search
K

213 matches found

NVD
NVD
added 2025/09/15 3:15 p.m.7 views

CVE-2023-53230

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix warning in cifssmb3domount This fixes the following warning reported by kernel test robot fs/smb/client/cifsfs.c:982 cifssmb3domount warn: possible memory leak of 'cifssb'...

5.5CVSS0.00145EPSS
Exploits0References4
OSV
OSV
added 2025/09/15 3:15 p.m.4 views

UBUNTU-CVE-2023-53230

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix warning in cifssmb3domount This fixes the following warning reported by kernel test robot fs/smb/client/cifsfs.c:982 cifssmb3domount warn: possible memory leak of 'cifssb'...

5.5CVSS5.7AI score0.00145EPSS
Exploits0References7
Fedora
Fedora
added 2025/09/11 1:19 a.m.9 views

[SECURITY] Fedora 41 Update: wireshark-4.4.9-1.fc41

Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless WiFi or Bluetooth networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. It has many powerful...

7.8CVSS6.5AI score0.00194EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:34 p.m.4 views

cifs: fix potential memory leaks in session setup

...

5.5CVSS7AI score0.00161EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 10:6 p.m.11 views

cifs: fix underflow in parse_server_interfaces()

...

6.7CVSS7AI score0.00407EPSS
Exploits0
NVD
NVD
added 2025/08/16 12:15 p.m.5 views

CVE-2025-38523

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix the smbdresponse slab to allow usercopy The handling of received data in the smbdirect client code involves using copytoiter to copy data from the smbdreponse struct's packet trailer to a folioq buffer provided by...

5.5CVSS0.00143EPSS
Exploits0References3
OSV
OSV
added 2025/08/16 12:15 p.m.3 views

UBUNTU-CVE-2025-38523

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix the smbdresponse slab to allow usercopy The handling of received data in the smbdirect client code involves using copytoiter to copy data from the smbdreponse struct's packet trailer to a folioq buffer provided by...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2025/08/16 11:12 a.m.4 views

CVE-2025-38523

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix the smbdresponse slab to allow usercopy The handling of received data in the smbdirect client code involves using copytoiter to copy data from the smbdreponse struct's packet trailer to a folioq buffer provided by...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/16 12:0 a.m.5 views

PT-2025-33566 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The handling of received data in the smbdirect client code uses copy to iter to copy data from the smbd response struct's packet trailer to a folioq buffer. When CONFIG HARDENED...

6.1AI score0.00143EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/08/16 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the cifs smbdresponse slab not being allowed to be copied by the user, which could cause the kernel to crash...

5.5CVSS6.2AI score0.00143EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.2 views

Ubuntu 14.04 LTS / 16.04 LTS : cifs-utils vulnerabilities (USN-7688-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7688-1 advisory. Aurlien Aptel discovered that cifs-utils invoked a shell when requesting a password. In certain environments, a local attacker could possibly...

7.8CVSS6.6AI score0.01804EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-42256

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: cifs: Fix server re-repick on subrequest retry When a subrequest is marked for needing retry...

9.8CVSS5.8AI score0.00732EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-3595

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Linux Kernel. It has been rated as problematic. Affected by this issue is the function sessfreebuffer of the file fs/cifs/sess.c of...

5.5CVSS5.2AI score0.00274EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/08/04 3:19 p.m.8 views

kernel: cifs: potential buffer overflow in handling symlinks

A buffer overflow vulnerability has been identified in the Linux kernel's Common Internet File System CIFS module, specifically within the parsemfsymlink function. This flaw is caused by insufficient input validation on the linklen value, which dictates the length of a symbolic link. An attacker...

7.8CVSS7.2AI score0.00305EPSS
Exploits0References5
OSV
OSV
added 2025/07/23 7:18 p.m.7 views

CLSA-2025-1753298320 kernel: Fix of 16 CVEs

Bluetooth: Fix use after free in hcisendacl CVE-2022-49111 - NFSv4/pnfs: Fix a use-after-free bug in open CVE-2022-50072 - NFSv4: Don't hold the layoutget locks across multiple RPC calls CVE-2022-50072 - net: qrtr: start MHI channel after endpoit creation CVE-2022-50044 - tty: ngsm: add sanity...

7.8CVSS7AI score0.00283EPSS
Exploits0References1
OSV
OSV
added 2025/07/18 9:55 a.m.8 views

USN-7655-1 linux-intel-iotg-5.15 vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

9.8CVSS6.6AI score0.02033EPSS
Exploits3References219
OSV
OSV
added 2025/06/30 5:22 p.m.7 views

USN-7605-1 linux, linux-aws, linux-gcp, linux-gcp-6.11, linux-hwe-6.11, linux-oracle, linux-raspi, linux-realtime vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

8.8CVSS6.5AI score0.23278EPSS
Exploits0References178
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.4 views

The vulnerability of the `cifs_close_deferred_file()` function in the fs/cifs/misc.c module of the Linux kernel’s file system support module allows a attacker to cause a service failure.

The vulnerability of the cifsclosedeferredfile function in the fs/cifs/misc.c module of the Linux kernel’s file system support module is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.6AI score0.00158EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2025/06/24 12:25 a.m.4 views

USN-7591-3 linux-intel-iot-realtime, linux-realtime vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

8.8CVSS6.8AI score0.02033EPSS
Exploits0References68
OSV
OSV
added 2025/06/19 8:15 p.m.6 views

USN-7585-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-gcp, linux-gcp-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-xilinx-zynqmp vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS6.8AI score0.00246EPSS
Exploits0References33
Rows per page
Query Builder