Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005549 fixes several issues. The following security issues were fixed: CVE-2021-47517: Fix panic when interrupt coaleceing is set via ethtool bsc1225429. CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. CVE-2024-43861: Fix memor...

Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-150600105 fixes several issues. The following security issues were fixed: CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks bsc1229273. CVE-2023-52752: smb: client: fix...

CLSA-2024-1732267577 kernel: Fix of 2 CVEs

net: bridge: xmit: make sure we have at least eth header len bytes CVE-2024-38538 - SUNRPC: Fix UAF in svctcplistendataready CVE-2023-52885 - Fix: Revert "smb: client: fix use-after-free bug in cifsdebugdataprocshow" double lock...

SUSE CVE-2024-50285

In the Linux kernel, the following vulnerability has been resolved: ksmbd: check outstanding simultaneous SMB operations If Client send simultaneous SMB operations to ksmbd, It exhausts too much memory through the "ksmbdworkcache". It will cause OOM issue. ksmbd has a credit mechanism but it can'...

DEBIAN-CVE-2024-50285

In the Linux kernel, the following vulnerability has been resolved: ksmbd: check outstanding simultaneous SMB operations If Client send simultaneous SMB operations to ksmbd, It exhausts too much memory through the "ksmbdworkcache”. It will cause OOM issue. ksmbd has a credit mechanism but it can'...

UBUNTU-CVE-2024-50286

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in ksmbdsmb2sessioncreate There is a race condition between ksmbdsmb2sessioncreate and ksmbdexpiresession. This patch add missing sessionstablelock while adding/deleting session from global session...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from unchecked simultaneous SMB operations...

CLSA-2024-1731933167 kernel: Fix of 36 CVEs

smb: client: fix use-after-free in smb2queryinfocompound CVE-2023-52751 - smb: client: prevent new fids from being removed by laundromat CVE-2023-52751 - cifs: fix dentry lookups in directory handle cache CVE-2023-52751 - uprobe: avoid out-of-bounds memory access of fetching args CVE-2024-50067 -...

CVE-2023-39179

A flaw was found within the handling of SMB2 read requests in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose sensitive information on...

CVE-2023-39176

A flaw was found within the parsing of SMB2 requests that have a transform header in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose...

UBUNTU-CVE-2023-39176

A flaw was found within the parsing of SMB2 requests that have a transform header in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose...

The vulnerability in the implementation of the SMB protocol in Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the SMB protocol implementation in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

PT-2024-35625

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue has been reported in the Linux kernel, specifically in the SMB client, when using SMB2.1 + sign mounts. This occurs due to a race condition between tasks A and B,...

The vulnerability in the implementation of the Server Message Block (SMBv3) network protocol on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Server Message Block SMBv3 network protocol implementation in Windows operating systems is related to a memory reclamation error. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2024-43642

Windows SMB Denial of Service Vulnerability...

kernel: smb: client: guarantee refcounted children from parent session

The following vulnerability has been resolved in the Linux kernel: smb: client: Fix - Guarantee refcounted children from the parent session...

kernel: smb: client: potential use-after-free in cifs_debug_files_proc_show()

A flaw was found in the Linux kernel. The following vulnerability has been resolved: smb: client: fix potential UAF in cifsdebugfilesprocshow...

kernel: smb: client: fix potential deadlock when releasing mids

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when releasing mids All releasemid callers seem to hold a reference of @mid so there is no need to call krefput&mid-refcount, releasemid under @server-midlock spinlock. If they don't, then an...

kernel: smb: client: fix potential UAF in smb2_is_network_name_deleted()

A use-after-free flaw was found in the Linux kernel in smb smb2isnetworknamedeleted when exiting a session. This flaw allows a local attacker to crash the system...

Microsoft SMBv3 资源管理错误漏洞

Microsoft SMBv3 is a support firmware from Microsoft Corporation USA that provides SMB functionality for devices. A resource management error vulnerability exists in Microsoft SMBv3. An attacker exploiting this vulnerability could remotely execute code. The following products and versions are...