12 matches found
ROS-20260120-7352
A vulnerability in the cifs component of the Linux kernel is related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service DoS...
ROS-20260120-7351
A vulnerability in the cifs component of the Linux operating system kernel is related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
PT-2025-26002 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been identified in the Linux kernel, specifically in the cifs Common Internet File System component. The issue occurs when the deferred close work is canceled,...
PT-2023-34990 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.9 Description: A potential memory leak issue has been identified in the session setup of the cifs component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2023-34988 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.9 Description: The issue is related to a potential security problem in the cifs component, where an oops occurs due to an uncleared server-smbd conn in reconnect. The actual impact and attack plausibility...
PT-2023-33897 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: The issue is related to a potential security problem in the cifs component, which could lead to an oops during encryption. The actual impact and attack plausibility have not yet been proven...
PT-2023-34270 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.87 Description: The issue is related to a potential security problem in the cifs component, which could lead to an oops during encryption. The actual impact and attack plausibility have not yet been proven...
PT-2022-36166 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.81 Description: The issue is related to a connections leak when tlink setup fails in the cifs component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kerne...
PT-2022-35173 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue concerns an error in the length of the VALIDATE NEGOTIATE INFO message in the cifs component. It was introduced in version v5.0 and fixed in version v6.0.3. The actual impact and...
PT-2022-33454 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.19 through v5.19.1 Description: A potential security issue exists due to a lock length calculation error in the cifs component. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
PT-2022-7482 · Linux +6 · Linux Kernel +6
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.17.0-rc3+ Description: The vulnerability is related to a double free race condition in the cifs component of the Linux kernel. When cifs get root fails during cifs smb3 do mount, the kernel calls deactivate...
PT-2021-8272 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.4.0-70-generic 7818.04.1-Ubuntu Description: The issue is related to the Linux kernel's CIFS component, specifically with the return of an incorrect error code from the smb2 get enc key function. This can lead...