5 matches found
BELL-CVE-2023-52441
Bulletin has no description...
CVE-2023-52441 ksmbd: fix out of bounds in init_smb2_rsp_hdr()
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out of bounds in initsmb2rsphdr If client send smb2 negotiate request and then send smb1 negotiate request, initsmb2rsphdr is called for smb1 negotiate request since needneg is set to false. This patch ignore smb1...
CVE-2023-52441
CVE-2023-52441 affects the Linux kernel ksmbd path and is resolved by a patch that fixes an out-of-bounds condition in init_smb2_rsp_hdr(). When a client sends an SMB2 negotiate request followed by an SMB1 negotiate request, init_smb2_rsp_hdr is invoked for the SMB1 path because need_neg is false...
CVE-2023-52441
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out of bounds in initsmb2rsphdr If client send smb2 negotiate request and then send smb1 negotiate request, initsmb2rsphdr is called for smb1 negotiate request since needneg is set to false. This patch ignore smb1...
CVE-2023-52441 ksmbd: fix out of bounds in init_smb2_rsp_hdr()
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out of bounds in initsmb2rsphdr If client send smb2 negotiate request and then send smb1 negotiate request, initsmb2rsphdr is called for smb1 negotiate request since needneg is set to false. This patch ignore smb1...