1784 matches found
PT-2026-8213
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the smb2 open file function within the SMB/client component of the Linux kernel. The issue occurs when directories are exported as read-only, and a CIFS mount is...
Unity Linux 20.1060a Security Update: kernel (UTSA-2025-993135)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993135 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: Fix warning and UAF when destroy the MR list If the MR allocate failed, the MR recovery wor...
EUVD-2023-60381
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix lost destroy smbd connection when MR allocate failed If the MR allocate failed, the smb direct connection info is NULL, then smbddestroy will directly return, then the connection info will be leaked. Let's set the smb...
EUVD-2023-60391
In the Linux kernel, the following vulnerability has been resolved: ksmbd: avoid out of bounds access in decodepreauthctxt Confirm that the accessed pnegctxt-HashAlgorithms address sits within the SMB request boundary; deassemblenegcontexts only checks that the eight byte smb2negcontext header +...
CVE-2023-54250
In the Linux kernel, the following vulnerability has been resolved: ksmbd: avoid out of bounds access in decodepreauthctxt Confirm that the accessed pnegctxt-HashAlgorithms address sits within the SMB request boundary; deassemblenegcontexts only checks that the eight byte smb2negcontext header +...
CVE-2023-54260
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix lost destroy smbd connection when MR allocate failed If the MR allocate failed, the smb direct connection info is NULL, then smbddestroy will directly return, then the connection info will be leaked. Let's set the smb...
CVE-2023-54203
The CVE-2023-54203 entry concerns the Linux kernel ksmbd subsystem fix for a slab-out-of-bounds in init_smb2_rsp_hdr triggered while handling SMB1 negotiate as SMB2 server operations. The described issue involves slab-out-of-bounds read (size 16) during SMB1 SMB2 response header processing, with ...
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft
Microsoft Windows SMBGhost Vulnerability Checker - CVE-2020-07...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from out-of-bounds access to the ksmbd initsmb2rsphdr function...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from insufficient validation of SMB request boundaries, which could lead to out-of-bounds access...
PT-2025-54087
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the CIFS implementation, specifically in the cifs oplock break function. A race condition can occur with deferred close operations and lease break...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992211)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992211 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: Fix warning and UAF when destroy the MR list If the MR allocate failed, the MR recovery wor...
Linux Distros Unpatched Vulnerability : CVE-2023-54260
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cifs: Fix lost destroy smbd connection when MR allocate failed If the MR allocate failed, the smb direct connection info is NULL, then smbddestroy will directly...
CVE-2023-53990
In the Linux kernel, the following vulnerability has been resolved: SMB3: Add missing locks to protect deferred close file list cifsdeldeferredclose function has a critical section which modifies the deferred close file list. We must acquire deferredlock before calling cifsdeldeferredclose functi...
SUSE CVE-2023-54076
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix missed ses refcounting Use new cifssmbsesincrefcount helper to get an active reference of @ses and @ses-dfsrootses if set. This will prevent @ses-dfsrootses of being put in the next call to cifsputsmbses and thus...
CVE-2023-54076 smb: client: fix missed ses refcounting
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix missed ses refcounting Use new cifssmbsesincrefcount helper to get an active reference of @ses and @ses-dfsrootses if set. This will prevent @ses-dfsrootses of being put in the next call to cifsputsmbses and thus...
CVE-2023-53990
In the Linux kernel, the following vulnerability has been resolved: SMB3: Add missing locks to protect deferred close file list cifsdeldeferredclose function has a critical section which modifies the deferred close file list. We must acquire deferredlock before calling cifsdeldeferredclose functi...
CVE-2023-53990
In the Linux kernel, the following vulnerability has been resolved: SMB3: Add missing locks to protect deferred close file list cifsdeldeferredclose function has a critical section which modifies the deferred close file list. We must acquire deferredlock before calling cifsdeldeferredclose functi...
CVE-2023-53990 SMB3: Add missing locks to protect deferred close file list
In the Linux kernel, the following vulnerability has been resolved: SMB3: Add missing locks to protect deferred close file list cifsdeldeferredclose function has a critical section which modifies the deferred close file list. We must acquire deferredlock before calling cifsdeldeferredclose functi...
CVE-2023-53990
CVE-2023-53990 pertains to the Linux kernel SMB3/cifs path. The issue arises from missing synchronization when modifying the deferred close file list inside cifs_del_deferred_close, creating a potential data race. The root cause is a missing acquire of the deferred_lock around the critical sectio...