The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a single array of pages. A client can force the send buffer to shrink by sending an RPC message over TCP with garbage data added at the end of the message. The RPC message with garbage data is still correctly formed according to the specification and is passed forward to handlers. Vulnerable code in NFSD is not expecting the oversized request and writes beyond the allocated buffer space. CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

...

No title provided

REJECTED CVE In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix exposure in nfsd4decodebitmap The Linux kernel CVE team has assigned CVE-2021-47213 to this issue...

kernel: nfs_atomic_open() returns uninitialized data instead of ENOTDIR

A flaw was found in the Linux kernel. When an application tries to open a directory using the ODIRECTORY flag in a mounted NFS filesystem, a lookup operation is performed. If the NFS server returns a file as a result of the lookup, the NFS filesystem returns an uninitialized file descriptor inste...

PT-2024-11228 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel related to the NFSD, specifically in the nfsd4 decode bitmap function. The issue was reported by [email protected]. Recommendation...

DEBIAN-CVE-2022-43945

The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call RPC into a single array of pages. A client can force the send...

CVE-2022-43945

The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call RPC into a single array of pages. A client can force the send...

UBUNTU-CVE-2022-43945

The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call RPC into a single array of pages. A client can force the send...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel NFSD version 5.19.17, 6.0.2, which stems from a susceptibility to buffer overflows...

Exploit for CVE-2022-26937

Windows Network File System Crash PoC CVE-2022-26937...

Veritas System Recovery 安全漏洞

Veritas System Recovery is a system recovery software from Veritas, USA. The software provides Windows systems with the ability to recover damaged systems without reinstalling the system. An authorization issue vulnerability exists in Veritas System Recovery VSR 18.0 and later, versions prior to...

PT-2022-27960 · Apple · Ipados +4

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 macOS Ventura versions prior to 13.1 tvOS versions prior to 16.2 Description: The issue was addressed with improved bounds checks. Connecting to a malicious NFS server may lead to...

DEBIAN-CVE-2022-0812

An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpcrdma.c in the Linux Kernel. This flaw allows an attacker with normal user privileges to leak kernel information...

UBUNTU-CVE-2022-0812

An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpcrdma.c in the Linux Kernel. This flaw allows an attacker with normal user privileges to leak kernel information...

CVE-2022-34715

Windows Network File System Remote Code Execution Vulnerability...

Remote code execution

Windows Network File System Remote Code Execution Vulnerability...

CVE-2022-34715 Windows Network File System Remote Code Execution Vulnerability

...

CVE-2022-34715 Windows Network File System Remote Code Execution Vulnerability

...

kernel: NFSv4: Fix free of uninitialized nfs4_label on referral lookup.

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix free of uninitialized nfs4label on referral lookup. Send along the already-allocated fattr along with nfs4fslocations, and drop the memcpy of fattr. We end up growing two more allocations, but this fixes up a crash as:...

Microsoft Windows Network File System 安全漏洞

Microsoft Windows Network File System is a file sharing solution from Microsoft that lets you transfer files between computers running Windows Server and UNIX operating systems using the NFS protocol. A security vulnerability exists in Microsoft Windows Network File System. The following products...

The vulnerability of the decode_nfs_fh() function in the Linux operating system allows a hacker to increase their privileges and cause a system crash.

The vulnerability of the decodenfsfh function in the Linux operating system arises from the execution of an operation beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to gain elevated privileges and cause the system to crash...