1785 matches found
SUSE CVE-2025-37750
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in decryption with multichannel After commit f7025d861694 "smb: client: allocate crypto only for primary server" and commit b0abcd65ec54 "smb: client: fix UAF in async decryption", the channels started reusin...
UBUNTU-CVE-2025-37778
In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix dangling pointer in krbauthenticate krbauthenticate frees sess-user and does not set the pointer to NULL. It calls ksmbdkrb5authenticate to reinitialise sess-user but that function may return without doing so. If that...
UBUNTU-CVE-2025-37750
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in decryption with multichannel After commit f7025d861694 "smb: client: allocate crypto only for primary server" and commit b0abcd65ec54 "smb: client: fix UAF in async decryption", the channels started reusin...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue in multi-channel decryption in the smb client...
USN-7462-2 linux-aws-fips vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Network drivers; - File systems infrastructure; - Ext4 file system; - Network file system NFS server...
CVE-2025-1048
Sonos Era 300 Speaker libsmb2 Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability. The specific flaw...
Sonos Era 300 资源管理错误漏洞
The Sonos Era 300 is a spatial audio speaker with Dolby Atmos Dolby Atmos from Sonos USA. The Sonos Era 300 suffers from a resource management error vulnerability that originates from SMB data processing without verifying object existence, which could lead to post-release reuse and remote code...
SUSE CVE-2025-22077
In the Linux kernel, the following vulnerability has been resolved: Revert "smb: client: fix TCP timers deadlock after rmmod" This reverts commit e9f2517a3e18a54a3943c098d2226b245d488801. Commit e9f2517a3e18 "smb: client: fix TCP timers deadlock after rmmod" is intended to fix a null-ptr-deref in...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from ksmbd not verifying that numsubauth is zero...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an imbalance in the reference count of the smb client netns, which could lead to a memory leak and reuse aft...
CVE-2025-32103
CrushFTP 9.x and 10.x through 10.8.4 and 11.x through 11.3.1 allows directory traversal via the /WebInterface/function/ URI to read files accessible by SMB at UNC share pathnames, bypassing SecurityManager restrictions...
The vulnerability of the cifs_strndup_from_utf16() function in the /fs/smb/client/reparse.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the cifsstrndupfromutf16 function in the /fs/smb/client/reparse.c module of the Linux kernel involves copying buffers without checking their size—a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
The vulnerability of the smb component in the Linux operating system’s kernel allows a hacker to increase their privileges.
The vulnerability of the smb component in the Linux operating system’s kernel relates to the use of memory after it is freed in the SMB2negotiate function. Exploiting this vulnerability can allow an attacker to enhance their privileges...
The vulnerability of the `parse_server_interfaces()` function in the `fs/smb/client/smb2ops.c` module allows a hacker to compromise the integrity of protected information or cause service failures for the SMB kernel client of the Linux operating system.
The vulnerability of the parseserverinterfaces function in the fs/smb/client/smb2ops.c module, which is part of the SMB client support in Linux operating systems, involves a numerical port escape or cyclic shift vulnerability. Exploiting this vulnerability could allow an attacker to compromise th...
The vulnerability of the smb2_send_interim_resp() function in the fs/ksmbd/smb2pdu.c module of the Linux file system support module allows a attacker to compromise the integrity of protected information or cause service failures.
The vulnerability of the smb2sendinterimresp function in the fs/ksmbd/smb2pdu.c module of the Linux file system support module is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the integrity of protected information or cause service...
smb: client: Add check for next_buffer in receive_encrypted_standard()
...
USN-7408-3 linux-azure-fips, linux-gcp-fips vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - SMB network file system; - Network namespace; - Networking core; CVE-2024-56658, CVE-2024-35864, CVE-2024-26928...
USN-7406-4 linux-azure-fips vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Network namespace; - Networking core; CVE-2024-26928, CVE-2024-56658,...
USN-7408-1 linux, linux-azure, linux-azure-5.4, linux-bluefield, linux-gcp, linux-ibm, linux-kvm, linux-oracle, linux-oracle-5.4, linux-xilinx-zynqmp vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - SMB network file system; - Network namespace; - Networking core; CVE-2024-56658, CVE-2024-35864, CVE-2024-26928...
USN-7406-2 linux-fips, linux-aws-fips, linux-gcp-fips vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Network namespace; - Networking core; CVE-2024-26928, CVE-2024-56658,...