Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: cifs: Client: Fixed a memory leak in smb3fsCONTEXTPARSEPARAM. The user calls fsconfig twice, but when the program exits, free only frees ctx-source for the second call to fsconfig, not the first. Regarding fc-source, there is ...

Exploit for CVE-2025-37947

This is a PoC exploit for CVE-2025-37947, a vulnerability in the...

SUSE CVE-2024-46795

In the Linux kernel, the following vulnerability has been resolved: ksmbd: unset the binding mark of a reused connection Steve French reported null pointer dereference error from sha256 lib. cifs.ko can send session setup requests on reused connection. If reused connection is used for binding...

Microsoft SMBv3 代码注入漏洞

Microsoft SMBv3 is a support firmware from Microsoft Corporation USA that provides SMB functionality for devices. A code injection vulnerability exists in Microsoft SMBv3 Client/Server. The following products and versions are affected: Windows 10 Version 21H1 for x64-based Systems,Windows 10...

BSA-2020-936

Security Advisory ID : BSA-2020-936 Component : SMBv3 Revision : 1.0: Final Microsoft SMBv3 contains a vulnerability in the handling of compression, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft Server Message Block 3.1....