The vulnerability of the cifs_stats_proc_show() function in the SMB protocol client implementation of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the cifsstatsprocshow function in the fs/smb/client/cifsdebug.c module of the SMB protocol client implementation in Linux operating systems is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to cause a service...

CVE-2024-35867

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifsstatsprocshow Skip sessions that are being teared down status == SESEXITING to avoid UAF...

CVE-2024-35867 smb: client: fix potential UAF in cifs_stats_proc_show()

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifsstatsprocshow Skip sessions that are being teared down status == SESEXITING to avoid UAF...

CVE-2024-35867

CVE-2024-35867 pertains to the Linux kernel SMB client. The vulnerability arises from a potential use-after-free in cifs_stats_proc_show(), mitigated by skipping sessions that are tearing down (status SES_EXITING) to prevent UAF. The fix resolves a local-attack scenario with high impact on confid...