Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifsdumpfullkey CVE-2024-35866 Affected Packages: kernel Issue Correction: Run dnf update kernel --releasever 2023.7.20250414 or dnf update --advisory ALAS2023-2025-938 --releasev...

kernel: smb: client: fix potential UAF in cifs_dump_full_key()

A use-after-free flaw was found in the Linux kernel in the smb client cifsdumpfullkey when exiting a session. This flaw allows a local attacker to crash the system...

SUSE CVE-2024-35866

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifsdumpfullkey Skip sessions that are being teared down status == SESEXITING to avoid UAF...

DEBIAN-CVE-2024-35866

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifsdumpfullkey Skip sessions that are being teared down status == SESEXITING to avoid UAF...

UBUNTU-CVE-2024-35866

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifsdumpfullkey Skip sessions that are being teared down status == SESEXITING to avoid UAF...