Lucene search
K

372 matches found

CVE
CVE
added 2026/05/01 1:56 p.m.49 views

CVE-2026-31705

The CVE-2026-31705 issue affects the ksmbd component of the Linux kernel, where an out-of-bounds write occurs in smb2_get_ea() during EA alignment padding. After writing each EA entry, a 4-byte alignment padding is applied with memset() unconditionally, potentially overwriting adjacent kernel hea...

9.8CVSS5.9AI score0.00389EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/05/01 1:56 p.m.12 views

EUVD-2026-26514

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds write in smb2getea EA alignment smb2getea applies 4-byte alignment padding via memset after writing each EA entry. The bounds check on buffreelen is performed before the value memcpy, but the alignment...

5.9AI score0.00389EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the smb2getea function’s memset operation, where the remaining space after the EA alignment is no...

9.8CVSS5.9AI score0.00389EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/04/23 8:7 a.m.8 views

ksmbd: fix potencial OOB in get_file_all_info() for compound requests

...

8.8CVSS5.2AI score0.006EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/04/23 1:26 a.m.17 views

SUSE CVE-2026-31432

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consumes most of the response buffer, ksmbd could write beyond the allocated...

8.8CVSS5.8AI score0.00507EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/23 1:26 a.m.9 views

SUSE CVE-2026-31433

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in getfileallinfo for compound requests When a compound request consists of QUERYDIRECTORY + QUERYINFO FILEALLINFORMATION and the first command consumes nearly the entire maxtranssize, getfileallinfo woul...

8.8CVSS5.8AI score0.006EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/22 3:31 p.m.7 views

EUVD-2026-24835

In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2len with offsetof in smb2calcmaxoutbuflen After this commit e2b76ab8b5c9 "ksmbd: add support for read compound", response buffer management was changed to use dynamic iov array. In the new design,...

5.8AI score0.00502EPSS
Exploits0References8
EUVD
EUVD
added 2026/04/22 9:31 a.m.4 views

EUVD-2026-24640

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consumes most of the response buffer, ksmbd could write beyond the allocated...

5.8AI score0.00507EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/22 9:31 a.m.4 views

EUVD-2026-24641

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in getfileallinfo for compound requests When a compound request consists of QUERYDIRECTORY + QUERYINFO FILEALLINFORMATION and the first command consumes nearly the entire maxtranssize, getfileallinfo woul...

5.8AI score0.006EPSS
Exploits0References8
NVD
NVD
added 2026/04/22 9:16 a.m.7 views

CVE-2026-31432

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consumes most of the response buffer, ksmbd could write beyond the allocated...

8.8CVSS0.00507EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/22 8:15 a.m.32 views

CVE-2026-31433 ksmbd: fix potencial OOB in get_file_all_info() for compound requests

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in getfileallinfo for compound requests When a compound request consists of QUERYDIRECTORY + QUERYINFO FILEALLINFORMATION and the first command consumes nearly the entire maxtranssize, getfileallinfo woul...

8.8CVSS0.006EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/04/22 8:15 a.m.5 views

CVE-2026-31433

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial OOB in getfileallinfo for compound requests When a compound request consists of QUERYDIRECTORY + QUERYINFO FILEALLINFORMATION and the first command consumes nearly the entire maxtranssize, getfileallinfo woul...

5.8AI score0.006EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/04/22 8:15 a.m.18 views

CVE-2026-31433

CVE-2026-31433 affects the Linux kernel ksmbd module. A vulnerability arises when processing a compound SMB request of QUERY_DIRECTORY + QUERY_INFO (FILE_ALL_INFORMATION): the code lacked a validation check on the client-provided OutputBufferLength before copying a filename into the smb2_file_all...

8.8CVSS5.8AI score0.006EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/04/22 8:15 a.m.29 views

CVE-2026-31432 ksmbd: fix OOB write in QUERY_INFO for compound requests

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consumes most of the response buffer, ksmbd could write beyond the allocated...

8.8CVSS0.00507EPSS
Exploits0References5
CVE
CVE
added 2026/04/22 8:15 a.m.37 views

CVE-2026-31432

CVE-2026-31432 affects the Linux kernel ksmbd component. Affected handling of compound requests (e.g., READ + QUERY_INFO(Security)) could allow an out-of-bounds write when the first READ command consumes most of the response buffer and ksmbd builds a security descriptor. The root cause is that sm...

8.8CVSS5.8AI score0.00507EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/22 8:15 a.m.3 views

CVE-2026-31432

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consumes most of the response buffer, ksmbd could write beyond the allocated...

5.8AI score0.00507EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.6 views

PT-2026-34276

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds write exists in the ksmbd component within the get file all info function during the processing of compound requests consisting of QUERY DIRECTORY and QUERY INFO FILE AL...

8.8CVSS5.9AI score0.006EPSS
Exploits0References22
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.9 views

PT-2026-34275

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds write exists in ksmbd when processing compound requests, such as READ combined with QUERY INFOSecurity. If the initial command consumes most of the response buffer, ksmb...

8.8CVSS5.9AI score0.00507EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-31432

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consume...

8.8CVSS7.3AI score0.00507EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23428

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of shareconf in compound request smb2getksmbdtcon reuses work-tcon...

9.8CVSS6.5AI score0.00331EPSS
Exploits0References2
Rows per page
Query Builder