2 matches found
The vulnerability of the smb2_get_data_area_len() function in the implementation of the SMB protocol server for Linux operating systems allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the smb2getdataarealen function in the fs/smb/server/smb2misc.c module of the SMB protocol server implementation in Linux operating systems is related to accessing memory beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the...
An issue was discovered in ksmbd in the Linux kernel before 6.6.10. smb2_get_data_area_len in fs/smb/server/smb2misc.c can cause an smb_strndup_from_utf16 out-of-bounds access because the relationship between Name data and CreateContexts data is mishandled.
...